Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-41184 (GCVE-0-2021-41184)
Vulnerability from cvelistv5 – Published: 2021-10-26 00:00 – Updated: 2025-11-04 16:09
VLAI
EPSS
Title
XSS in the `of` option of the `.position()` util
Summary
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
Severity
6.5 (Medium)
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Assigner
References
14 references
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-11-04T16:09:17.971Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"name": "FEDORA-2021-51c256bf87",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"name": "FEDORA-2021-ab38307fc3",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"name": "FEDORA-2021-013ab302be",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"name": "FEDORA-2022-9d655503ea",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"name": "FEDORA-2022-bf18450366",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
},
{
"url": "http://seclists.org/fulldisclosure/2024/Aug/37"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "jquery-ui",
"vendor": "jquery",
"versions": [
{
"status": "affected",
"version": "\u003c 1.13.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-08-31T02:06:17.867Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"name": "FEDORA-2021-51c256bf87",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"name": "FEDORA-2021-ab38307fc3",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"name": "FEDORA-2021-013ab302be",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"name": "FEDORA-2022-9d655503ea",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"name": "FEDORA-2022-bf18450366",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
}
],
"source": {
"advisory": "GHSA-gpqq-952q-5327",
"discovery": "UNKNOWN"
},
"title": "XSS in the `of` option of the `.position()` util"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2021-41184",
"datePublished": "2021-10-26T00:00:00.000Z",
"dateReserved": "2021-09-15T00:00:00.000Z",
"dateUpdated": "2025-11-04T16:09:17.971Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-41184",
"date": "2026-05-30",
"epss": "0.31184",
"percentile": "0.96845"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-41184\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2021-10-26T15:15:10.460\",\"lastModified\":\"2025-11-04T16:15:43.353\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.\"},{\"lang\":\"es\",\"value\":\"jQuery-UI es la biblioteca oficial de interfaz de usuario de jQuery. Antes de la versi\u00f3n 1.13.0, aceptar el valor de la opci\u00f3n \\\"of\\\" de la utilidad \\\".position()\\\" de fuentes no confiables pod\u00eda ejecutar c\u00f3digo no confiable. El problema es corregido en jQuery UI versi\u00f3n 1.13.0. Cualquier valor de cadena pasado a la opci\u00f3n \\\"of\\\" se trata ahora como un selector CSS. Una soluci\u00f3n es no aceptar el valor de la opci\u00f3n \\\"of\\\" de fuentes no confiables\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jqueryui:jquery_ui:*:*:*:*:*:jquery:*:*\",\"versionEndExcluding\":\"1.13.0\",\"matchCriteriaId\":\"EA897736-789A-461C-86F5-E7470E643213\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6770B6C3-732E-4E22-BF1C-2D2FD610061C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F9C8C20-42EB-4AB5-BD97-212DEB070C43\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FFF7106-ED78-49BA-9EC5-B889E3685D53\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56409CEC-5A1E-4450-AA42-641E459CC2AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06F4839-D16A-4A61-9BB5-55B13F41E47F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"108A2215-50FB-4074-94CF-C130FA14566D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AFC73CE-ABB9-42D3-9A71-3F5BC5381E0E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32F0B6C0-F930-480D-962B-3F4EFDCC13C7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"803BC414-B250-4E3A-A478-A3881340D6B8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FEB3337-BFDE-462A-908B-176F92053CEC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"736AEAE9-782B-4F71-9893-DED53367E102\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0B4AD8A-F172-4558-AEC6-FF424BA2D912\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8497A4C9-8474-4A62-8331-3FE862ED4098\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDDF61B7-EC5C-467C-B710-B89F502CD04F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0\",\"versionEndExcluding\":\"7.86\",\"matchCriteriaId\":\"013FAABA-8CDD-46AD-B321-9908634C880A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.2.0\",\"versionEndExcluding\":\"9.2.11\",\"matchCriteriaId\":\"BE1268C5-DEFD-44D8-8994-D93C7839D5C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.3.0\",\"versionEndExcluding\":\"9.3.3\",\"matchCriteriaId\":\"7A28F55D-AEB8-454E-B1A9-163C4CB2B38D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.21.0\",\"matchCriteriaId\":\"CAB9A41F-91F1-40DF-BF12-6ADA7229A84C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C650FEDB-E903-4C2D-AD40-282AB5F2E3C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:application_express:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"22.1.1\",\"matchCriteriaId\":\"48B23728-0050-4AF0-B8B0-A959CBAB4505\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_platform:2.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB9FC9AB-1070-420F-870E-A5EC43A924A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDC6D658-09EA-4C41-869F-1C2EA163F751\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:big_data_spatial_and_graph:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"23.1\",\"matchCriteriaId\":\"384DEDD9-CB26-4306-99D8-83068A9B23ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:big_data_spatial_and_graph:23.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEF828F5-C666-40DA-98DD-CDF658D7090B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E812639B-EE28-4C68-9F6F-70C8BF981C86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBE1A019-7BB6-4226-8AC4-9D6927ADAEFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B98BAEB2-A540-4E8A-A946-C4331B913AFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8FBE260-E306-4215-80C0-D2D27CA43E0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_inventory_management:9.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8865CE15-F9A1-4A46-AF93-B58356BDEE6F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AC63D10-2326-4542-B345-31D45B9A7408\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_suite8:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.11.0\",\"versionEndIncluding\":\"8.14.0\",\"matchCriteriaId\":\"C7F4B5F0-6B78-4A94-AD83-6B78D484E298\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_suite8:8.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBDA65DE-5727-49DC-8D50-DA81DB3E8841\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.2.6.3\",\"matchCriteriaId\":\"C5F35B8D-6F26-4682-8541-6F10EE2ACE7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8AF00C6-B97F-414D-A8DF-057E6BFD8597\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.2.0\",\"versionEndIncluding\":\"12.2.25\",\"matchCriteriaId\":\"15C83E0F-5FA2-47E5-9FCF-CD2E90D6A9E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.7\",\"versionEndIncluding\":\"17.12\",\"matchCriteriaId\":\"08FA59A8-6A62-4B33-8952-D6E658F8DAC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"202AD518-2E9B-4062-B063-9858AE1F9CE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10864586-270E-4ACF-BDCC-ECFCD299305F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38340E3C-C452-4370-86D4-355B6B4E0A06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9C55C69-E22E-4B80-9371-5CD821D79FE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:rest_data_services:*:*:*:*:-:*:*:*\",\"versionEndExcluding\":\"22.1.1\",\"matchCriteriaId\":\"105BF985-2403-455E-BAA1-509245B54A1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:rest_data_services:22.1.1:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"281F1ACB-3180-422C-BADF-B0AE5F50924E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F14A818F-AA16-4438-A3E4-E64C9287AC66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04BCDC24-4A21-473C-8733-0D9CFB38A752\"}]}]}],\"references\":[{\"url\":\"https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211118-0004/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.drupal.org/sa-core-2022-001\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2022-09\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2024/Aug/37\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211118-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.drupal.org/sa-core-2022-001\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2022-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Release Notes\",\"Third Party Advisory\"]}]}}"
}
}
FKIE_CVE-2021-41184
Vulnerability from fkie_nvd - Published: 2021-10-26 15:15 - Updated: 2025-11-04 16:15
Severity
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:jqueryui:jquery_ui:*:*:*:*:*:jquery:*:*",
"matchCriteriaId": "EA897736-789A-461C-86F5-E7470E643213",
"versionEndExcluding": "1.13.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6770B6C3-732E-4E22-BF1C-2D2FD610061C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F9C8C20-42EB-4AB5-BD97-212DEB070C43",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FFF7106-ED78-49BA-9EC5-B889E3685D53",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E63D8B0F-006E-4801-BF9D-1C001BBFB4F9",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "56409CEC-5A1E-4450-AA42-641E459CC2AF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B06F4839-D16A-4A61-9BB5-55B13F41E47F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "108A2215-50FB-4074-94CF-C130FA14566D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7AFC73CE-ABB9-42D3-9A71-3F5BC5381E0E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "32F0B6C0-F930-480D-962B-3F4EFDCC13C7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "803BC414-B250-4E3A-A478-A3881340D6B8",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0FEB3337-BFDE-462A-908B-176F92053CEC",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "736AEAE9-782B-4F71-9893-DED53367E102",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D0B4AD8A-F172-4558-AEC6-FF424BA2D912",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8497A4C9-8474-4A62-8331-3FE862ED4098",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CDDF61B7-EC5C-467C-B710-B89F502CD04F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"matchCriteriaId": "013FAABA-8CDD-46AD-B321-9908634C880A",
"versionEndExcluding": "7.86",
"versionStartIncluding": "7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BE1268C5-DEFD-44D8-8994-D93C7839D5C2",
"versionEndExcluding": "9.2.11",
"versionStartIncluding": "9.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7A28F55D-AEB8-454E-B1A9-163C4CB2B38D",
"versionEndExcluding": "9.3.3",
"versionStartIncluding": "9.3.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CAB9A41F-91F1-40DF-BF12-6ADA7229A84C",
"versionEndExcluding": "5.21.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "C650FEDB-E903-4C2D-AD40-282AB5F2E3C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:application_express:*:*:*:*:*:*:*:*",
"matchCriteriaId": "48B23728-0050-4AF0-B8B0-A959CBAB4505",
"versionEndExcluding": "22.1.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_platform:2.9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "AB9FC9AB-1070-420F-870E-A5EC43A924A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "BDC6D658-09EA-4C41-869F-1C2EA163F751",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:big_data_spatial_and_graph:*:*:*:*:*:*:*:*",
"matchCriteriaId": "384DEDD9-CB26-4306-99D8-83068A9B23ED",
"versionEndExcluding": "23.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:big_data_spatial_and_graph:23.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BEF828F5-C666-40DA-98DD-CDF658D7090B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "E812639B-EE28-4C68-9F6F-70C8BF981C86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "CBE1A019-7BB6-4226-8AC4-9D6927ADAEFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "B98BAEB2-A540-4E8A-A946-C4331B913AFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B8FBE260-E306-4215-80C0-D2D27CA43E0F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:hospitality_inventory_management:9.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8865CE15-F9A1-4A46-AF93-B58356BDEE6F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2AC63D10-2326-4542-B345-31D45B9A7408",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:hospitality_suite8:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C7F4B5F0-6B78-4A94-AD83-6B78D484E298",
"versionEndIncluding": "8.14.0",
"versionStartIncluding": "8.11.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:hospitality_suite8:8.10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "CBDA65DE-5727-49DC-8D50-DA81DB3E8841",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C5F35B8D-6F26-4682-8541-6F10EE2ACE7E",
"versionEndIncluding": "9.2.6.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
"matchCriteriaId": "D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*",
"matchCriteriaId": "C8AF00C6-B97F-414D-A8DF-057E6BFD8597",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*",
"matchCriteriaId": "15C83E0F-5FA2-47E5-9FCF-CD2E90D6A9E8",
"versionEndIncluding": "12.2.25",
"versionStartIncluding": "12.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*",
"matchCriteriaId": "08FA59A8-6A62-4B33-8952-D6E658F8DAC9",
"versionEndIncluding": "17.12",
"versionStartIncluding": "17.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*",
"matchCriteriaId": "202AD518-2E9B-4062-B063-9858AE1F9CE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*",
"matchCriteriaId": "10864586-270E-4ACF-BDCC-ECFCD299305F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*",
"matchCriteriaId": "38340E3C-C452-4370-86D4-355B6B4E0A06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*",
"matchCriteriaId": "E9C55C69-E22E-4B80-9371-5CD821D79FE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:rest_data_services:*:*:*:*:-:*:*:*",
"matchCriteriaId": "105BF985-2403-455E-BAA1-509245B54A1D",
"versionEndExcluding": "22.1.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:rest_data_services:22.1.1:*:*:*:-:*:*:*",
"matchCriteriaId": "281F1ACB-3180-422C-BADF-B0AE5F50924E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F14A818F-AA16-4438-A3E4-E64C9287AC66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "04BCDC24-4A21-473C-8733-0D9CFB38A752",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources."
},
{
"lang": "es",
"value": "jQuery-UI es la biblioteca oficial de interfaz de usuario de jQuery. Antes de la versi\u00f3n 1.13.0, aceptar el valor de la opci\u00f3n \"of\" de la utilidad \".position()\" de fuentes no confiables pod\u00eda ejecutar c\u00f3digo no confiable. El problema es corregido en jQuery UI versi\u00f3n 1.13.0. Cualquier valor de cadena pasado a la opci\u00f3n \"of\" se trata ahora como un selector CSS. Una soluci\u00f3n es no aceptar el valor de la opci\u00f3n \"of\" de fuentes no confiables"
}
],
"id": "CVE-2021-41184",
"lastModified": "2025-11-04T16:15:43.353",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-10-26T15:15:10.460",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mitigation",
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"source": "security-advisories@github.com",
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Release Notes",
"Third Party Advisory"
],
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2024/Aug/37"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Release Notes",
"Third Party Advisory"
],
"url": "https://www.tenable.com/security/tns-2022-09"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-GPQQ-952Q-5327
Vulnerability from github – Published: 2021-10-26 14:55 – Updated: 2025-11-04 19:36
VLAI
Summary
XSS in the `of` option of the `.position()` util in jquery-ui
Details
Impact
Accepting the value of the of option of the .position() util from untrusted sources may execute untrusted code. For example, invoking the following code:
$( "#element" ).position( {
my: "left top",
at: "right bottom",
of: "<img onerror='doEvilThing()' src='/404' />",
collision: "none"
} );
will call the doEvilThing() function.
Patches
The issue is fixed in jQuery UI 1.13.0. Any string value passed to the of option is now treated as a CSS selector.
Workarounds
A workaround is to not accept the value of the of option from untrusted sources.
For more information
If you have any questions or comments about this advisory, search for a relevant issue in the jQuery UI repo. If you don't find an answer, open a new issue.
Severity
6.5 (Medium)
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "jquery-ui"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.13.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.webjars.npm:jquery-ui"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.13.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "jQuery.UI.Combined"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.13.0"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "RubyGems",
"name": "jquery-ui-rails"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2021-41184"
],
"database_specific": {
"cwe_ids": [
"CWE-79"
],
"github_reviewed": true,
"github_reviewed_at": "2021-10-25T22:06:43Z",
"nvd_published_at": "2021-10-26T15:15:00Z",
"severity": "MODERATE"
},
"details": "### Impact\nAccepting the value of the `of` option of the [`.position()`](https://api.jqueryui.com/position/) util from untrusted sources may execute untrusted code. For example, invoking the following code:\n```js\n$( \"#element\" ).position( {\n\tmy: \"left top\",\n\tat: \"right bottom\",\n\tof: \"\u003cimg onerror=\u0027doEvilThing()\u0027 src=\u0027/404\u0027 /\u003e\",\n\tcollision: \"none\"\n} );\n```\nwill call the `doEvilThing()` function.\n\n### Patches\nThe issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector.\n\n### Workarounds\nA workaround is to not accept the value of the `of` option from untrusted sources.\n\n### For more information\nIf you have any questions or comments about this advisory, search for a relevant issue in [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues). If you don\u0027t find an answer, open a new issue.",
"id": "GHSA-gpqq-952q-5327",
"modified": "2025-11-04T19:36:07Z",
"published": "2021-10-26T14:55:12Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41184"
},
{
"type": "WEB",
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"type": "WEB",
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"type": "WEB",
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20211118-0004"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
},
{
"type": "PACKAGE",
"url": "https://github.com/jquery/jquery-ui"
},
{
"type": "WEB",
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2024/Aug/37"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
}
],
"summary": "XSS in the `of` option of the `.position()` util in jquery-ui"
}
GSD-2021-41184
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-41184",
"description": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"id": "GSD-2021-41184",
"references": [
"https://www.suse.com/security/cve/CVE-2021-41184.html",
"https://access.redhat.com/errata/RHSA-2022:4711",
"https://ubuntu.com/security/CVE-2021-41184"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-41184"
],
"details": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"id": "GSD-2021-41184",
"modified": "2023-12-13T01:23:27.319934Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2021-41184",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "jquery-ui",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "\u003c 1.13.0"
}
]
}
}
]
},
"vendor_name": "jquery"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-79",
"lang": "eng",
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/",
"refsource": "MISC",
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"name": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327",
"refsource": "MISC",
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"name": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280",
"refsource": "MISC",
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20211118-0004/",
"refsource": "MISC",
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"name": "https://www.drupal.org/sa-core-2022-001",
"refsource": "MISC",
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"name": "https://www.oracle.com/security-alerts/cpujul2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"name": "https://www.tenable.com/security/tns-2022-09",
"refsource": "MISC",
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"name": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html",
"refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
}
]
},
"source": {
"advisory": "GHSA-gpqq-952q-5327",
"discovery": "UNKNOWN"
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c1.13.0",
"affected_versions": "All versions before 1.13.0",
"cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-79",
"CWE-937"
],
"date": "2023-08-11",
"description": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"fixed_versions": [
"1.13.0"
],
"identifier": "CVE-2021-41184",
"identifiers": [
"CVE-2021-41184",
"GHSA-gpqq-952q-5327"
],
"not_impacted": "All versions starting from 1.13.0",
"package_slug": "npm/jquery-ui",
"pubdate": "2021-10-26",
"solution": "Upgrade to version 1.13.0 or above.",
"title": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"urls": [
"https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327",
"https://nvd.nist.gov/vuln/detail/CVE-2021-41184",
"https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280",
"https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/",
"https://security.netapp.com/advisory/ntap-20211118-0004/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/",
"https://www.drupal.org/sa-core-2022-001",
"https://github.com/advisories/GHSA-gpqq-952q-5327"
],
"uuid": "926deaf6-47c5-488f-80fc-541e2494f903"
},
{
"affected_range": "\u003e=7.0,\u003c7.86||\u003e=9.2.0,\u003c9.2.11||\u003e=9.3.0,\u003c9.3.3",
"affected_versions": "All versions starting from 7.0 before 7.86, all versions starting from 9.2.0 before 9.2.11, all versions starting from 9.3.0 before 9.3.3",
"cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-79",
"CWE-937"
],
"date": "2023-08-11",
"description": "jQuery-UI is the official jQuery user interface library.Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"fixed_versions": [
"8.0.0"
],
"identifier": "CVE-2021-41184",
"identifiers": [
"CVE-2021-41184",
"GHSA-gpqq-952q-5327"
],
"not_impacted": "All versions before 7.0, all versions starting from 7.86 before 9.2.0, all versions starting from 9.2.11 before 9.3.0, all versions starting from 9.3.3",
"package_slug": "packagist/drupal/drupal",
"pubdate": "2021-10-26",
"solution": "Upgrade to version 8.0.0 or above.",
"title": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2021-41184",
"https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280",
"https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327",
"https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/",
"https://security.netapp.com/advisory/ntap-20211118-0004/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/",
"https://www.drupal.org/sa-core-2022-001"
],
"uuid": "301eab5e-6782-4443-aee5-eff4f3553199"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:jqueryui:jquery_ui:*:*:*:*:*:jquery:*:*",
"cpe_name": [],
"versionEndExcluding": "1.13.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.3.3",
"versionStartIncluding": "9.3.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.2.11",
"versionStartIncluding": "9.2.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "7.86",
"versionStartIncluding": "7.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.21.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:hospitality_suite8:8.10.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "17.12",
"versionStartIncluding": "17.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_platform:2.9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:hospitality_inventory_management:9.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:big_data_spatial_and_graph:23.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:big_data_spatial_and_graph:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "23.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:hospitality_suite8:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.14.0",
"versionStartIncluding": "8.11.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "9.2.6.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:rest_data_services:*:*:*:*:-:*:*:*",
"cpe_name": [],
"versionEndExcluding": "22.1.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:application_express:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "22.1.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:rest_data_services:22.1.1:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "12.2.25",
"versionStartIncluding": "12.2.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2021-41184"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280",
"refsource": "MISC",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
},
{
"name": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327",
"refsource": "CONFIRM",
"tags": [
"Mitigation",
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
},
{
"name": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/",
"refsource": "MISC",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20211118-0004/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
},
{
"name": "https://www.drupal.org/sa-core-2022-001",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.drupal.org/sa-core-2022-001"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"name": "https://www.tenable.com/security/tns-2022-09",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Release Notes",
"Third Party Advisory"
],
"url": "https://www.tenable.com/security/tns-2022-09"
},
{
"name": "N/A",
"refsource": "N/A",
"tags": [
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/",
"refsource": "MISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/",
"refsource": "MISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/",
"refsource": "MISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/",
"refsource": "MISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/",
"refsource": "MISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
},
{
"name": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html",
"refsource": "MISC",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
},
"lastModifiedDate": "2023-08-31T03:15Z",
"publishedDate": "2021-10-26T15:15Z"
}
}
}
NCSC-2024-0294
Vulnerability from csaf_ncscnl - Published: 2024-07-17 13:52 - Updated: 2024-07-17 13:52Summary
Kwetsbaarheden verholpen in Oracle Communications
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Er zijn kwetsbaarheden verholpen in Oracle Communications.
Interpretaties: Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:
* Denial-of-Service (DoS)
* Toegang tot gevoelige gegevens
* Toegang tot systeemgegevens
* Manipulatie van gegevens
* (Remote) code execution (Gebruikersrechten)
Oplossingen: Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.
Kans: medium
Schade: high
CWE-681: Incorrect Conversion between Numeric Types
CWE-770: Allocation of Resources Without Limits or Throttling
CWE-787: Out-of-bounds Write
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
CWE-918: Server-Side Request Forgery (SSRF)
CWE-192: Integer Coercion Error
CWE-20: Improper Input Validation
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-222: Truncation of Security-relevant Information
CWE-284: Improper Access Control
CWE-295: Improper Certificate Validation
CWE-345: Insufficient Verification of Data Authenticity
CWE-352: Cross-Site Request Forgery (CSRF)
CWE-390: Detection of Error Condition Without Action
CWE-400: Uncontrolled Resource Consumption
CWE-404: Improper Resource Shutdown or Release
CWE-405: Asymmetric Resource Consumption (Amplification)
CWE-416: Use After Free
CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
CWE-450: Multiple Interpretations of UI Input
CWE-459: Incomplete Cleanup
CWE-476: NULL Pointer Dereference
CWE-502: Deserialization of Untrusted Data
CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
CWE-502
- Deserialization of Untrusted Data
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*
|
— | |
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
CWE-22
- Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*
|
— | |
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
6.5 (Medium)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*
|
— | |
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
CWE-192
- Integer Coercion Error
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*
|
— | |
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.8 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
9.8 (Critical)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
CWE-404
- Improper Resource Shutdown or Release
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
5.3 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
9.8 (Critical)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
CWE-400
- Uncontrolled Resource Consumption
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
5.9 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
6.2 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.8 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.4 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.2 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
9.8 (Critical)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
8.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
5.9 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.4 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
6.5 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
CWE-770
- Allocation of Resources Without Limits or Throttling
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
5.4 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
communications_asap
oracle
|
cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*
|
— |
References
80 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Er zijn kwetsbaarheden verholpen in Oracle Communications.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n* Denial-of-Service (DoS)\n* Toegang tot gevoelige gegevens\n* Toegang tot systeemgegevens\n* Manipulatie van gegevens\n* (Remote) code execution (Gebruikersrechten)",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Incorrect Conversion between Numeric Types",
"title": "CWE-681"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
"title": "CWE-88"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "Integer Coercion Error",
"title": "CWE-192"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Truncation of Security-relevant Information",
"title": "CWE-222"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "general",
"text": "Insufficient Verification of Data Authenticity",
"title": "CWE-345"
},
{
"category": "general",
"text": "Cross-Site Request Forgery (CSRF)",
"title": "CWE-352"
},
{
"category": "general",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Asymmetric Resource Consumption (Amplification)",
"title": "CWE-405"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "general",
"text": "Multiple Interpretations of UI Input",
"title": "CWE-450"
},
{
"category": "general",
"text": "Incomplete Cleanup",
"title": "CWE-459"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
"title": "CWE-601"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10086"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29425"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41184"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34169"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42890"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48174"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24998"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33201"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-37920"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46589"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51775"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52425"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5685"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0450"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22019"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22201"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22234"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22257"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22262"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23672"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23807"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23897"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25062"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25710"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26130"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26308"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27316"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28182"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28752"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28849"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29025"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2961"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34064"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34069"
},
{
"category": "external",
"summary": "Source - nvd",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6162"
},
{
"category": "external",
"summary": "Reference - oracle",
"url": "https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; ibm; nvd; oracle",
"url": "https://www.oracle.com/security-alerts/cpujul2024.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Communications",
"tracking": {
"current_release_date": "2024-07-17T13:52:53.293003Z",
"id": "NCSC-2024-0294",
"initial_release_date": "2024-07-17T13:52:53.293003Z",
"revision_history": [
{
"date": "2024-07-17T13:52:53.293003Z",
"number": "0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "communications_asap",
"product": {
"name": "communications_asap",
"product_id": "CSAFPID-204629",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "communications_asap",
"product": {
"name": "communications_asap",
"product_id": "CSAFPID-816792",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10086",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
}
],
"product_status": {
"known_affected": [
"CSAFPID-204629",
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2019-10086",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2019/CVE-2019-10086.json"
}
],
"title": "CVE-2019-10086"
},
{
"cve": "CVE-2021-29425",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
}
],
"product_status": {
"known_affected": [
"CSAFPID-204629",
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-29425",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-29425.json"
}
],
"title": "CVE-2021-29425"
},
{
"cve": "CVE-2021-37533",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-37533",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-37533.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2021-37533"
},
{
"cve": "CVE-2021-41184",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-204629",
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-41184",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41184.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-204629",
"CSAFPID-816792"
]
}
],
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2022-34169",
"cwe": {
"id": "CWE-192",
"name": "Integer Coercion Error"
},
"notes": [
{
"category": "other",
"text": "Integer Coercion Error",
"title": "CWE-192"
},
{
"category": "other",
"text": "Incorrect Conversion between Numeric Types",
"title": "CWE-681"
}
],
"product_status": {
"known_affected": [
"CSAFPID-204629",
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-34169",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-34169.json"
}
],
"title": "CVE-2022-34169"
},
{
"cve": "CVE-2022-36033",
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-36033",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36033.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2022-36033"
},
{
"cve": "CVE-2022-42890",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-42890",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42890.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2022-42890"
},
{
"cve": "CVE-2022-48174",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-48174",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-48174.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2022-48174"
},
{
"cve": "CVE-2023-5685",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-5685",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5685.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-5685"
},
{
"cve": "CVE-2023-24998",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-24998",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24998.json"
}
],
"title": "CVE-2023-24998"
},
{
"cve": "CVE-2023-33201",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-33201",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33201.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-33201"
},
{
"cve": "CVE-2023-37920",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "other",
"text": "Insufficient Verification of Data Authenticity",
"title": "CWE-345"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-37920",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-37920.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-37920"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-44487",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json"
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-46589",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-46589",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46589.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-46589"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"notes": [
{
"category": "other",
"text": "Truncation of Security-relevant Information",
"title": "CWE-222"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-48795",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-51775",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-51775",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51775.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-51775"
},
{
"cve": "CVE-2023-52425",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-52425",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52425.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2023-52425"
},
{
"cve": "CVE-2024-0450",
"cwe": {
"id": "CWE-450",
"name": "Multiple Interpretations of UI Input"
},
"notes": [
{
"category": "other",
"text": "Multiple Interpretations of UI Input",
"title": "CWE-450"
},
{
"category": "other",
"text": "Asymmetric Resource Consumption (Amplification)",
"title": "CWE-405"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0450",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0450.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-0450"
},
{
"cve": "CVE-2024-2961",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-2961",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2961.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-6162",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-6162",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6162.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-6162"
},
{
"cve": "CVE-2024-22019",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-22019",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22019.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-22019"
},
{
"cve": "CVE-2024-22201",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-22201",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22201.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-22201"
},
{
"cve": "CVE-2024-22234",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-22234",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22234.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-22234"
},
{
"cve": "CVE-2024-22257",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-22257",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22257.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-22257"
},
{
"cve": "CVE-2024-22262",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"notes": [
{
"category": "other",
"text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
"title": "CWE-601"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-22262",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-22262"
},
{
"cve": "CVE-2024-23672",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"notes": [
{
"category": "other",
"text": "Incomplete Cleanup",
"title": "CWE-459"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-23672",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23672.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-23672"
},
{
"cve": "CVE-2024-23807",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-23807",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23807.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-23807"
},
{
"cve": "CVE-2024-23897",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
"title": "CWE-88"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-23897",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23897.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-23897"
},
{
"cve": "CVE-2024-24549",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-24549",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-24549"
},
{
"cve": "CVE-2024-25062",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-25062",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25062.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-25710",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-25710",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25710.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-25710"
},
{
"cve": "CVE-2024-26130",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-26130",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-26130.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-26130"
},
{
"cve": "CVE-2024-26308",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-26308",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-26308.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-26308"
},
{
"cve": "CVE-2024-27316",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-27316",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-27316.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-27316"
},
{
"cve": "CVE-2024-28182",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28182",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28182.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-28752",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28752",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28752.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-28752"
},
{
"cve": "CVE-2024-28849",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28849",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28849.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-28849"
},
{
"cve": "CVE-2024-29025",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29025",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29025.json"
}
],
"title": "CVE-2024-29025"
},
{
"cve": "CVE-2024-34064",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-34064",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34064.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-34064"
},
{
"cve": "CVE-2024-34069",
"cwe": {
"id": "CWE-352",
"name": "Cross-Site Request Forgery (CSRF)"
},
"notes": [
{
"category": "other",
"text": "Cross-Site Request Forgery (CSRF)",
"title": "CWE-352"
}
],
"product_status": {
"known_affected": [
"CSAFPID-816792"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-34069",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34069.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-816792"
]
}
],
"title": "CVE-2024-34069"
}
]
}
NCSC-2025-0123
Vulnerability from csaf_ncscnl - Published: 2025-04-16 08:37 - Updated: 2025-04-16 08:37Summary
Kwetsbaarheden verholpen in Oracle Database Producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.
Interpretaties: De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores variërend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.
Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-385: Covert Timing Channel
CWE-347: Improper Verification of Cryptographic Signature
CWE-1286: Improper Validation of Syntactic Correctness of Input
CWE-125: Out-of-bounds Read
CWE-404: Improper Resource Shutdown or Release
CWE-400: Uncontrolled Resource Consumption
CWE-502: Deserialization of Untrusted Data
CWE-918: Server-Side Request Forgery (SSRF)
CWE-787: Out-of-bounds Write
CWE-20: Improper Input Validation
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-44: Path Equivalence: 'file.name' (Internal Dot)
CWE-226: Sensitive Information in Resource Not Removed Before Reuse
CWE-706: Use of Incorrectly-Resolved Name or Reference
CWE-669: Incorrect Resource Transfer Between Spheres
CWE-755: Improper Handling of Exceptional Conditions
CWE-178: Improper Handling of Case Sensitivity
CWE-193: Off-by-one Error
CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
CWE-523: Unprotected Transport of Credentials
CWE-190: Integer Overflow or Wraparound
CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
CWE-285: Improper Authorization
CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-284: Improper Access Control
CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CWE-476: NULL Pointer Dereference
CWE-459: Incomplete Cleanup
CWE-94: Improper Control of Generation of Code ('Code Injection')
CWE-770: Allocation of Resources Without Limits or Throttling
CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CWE-674: Uncontrolled Recursion
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-122: Heap-based Buffer Overflow
CWE-121: Stack-based Buffer Overflow
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-269: Improper Privilege Management
CWE-287: Improper Authentication
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
CWE-400
- Uncontrolled Resource Consumption
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
CWE-400
- Uncontrolled Resource Consumption
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
4.3 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
6.5 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
CWE-20
- Improper Input Validation
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
8.6 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
CWE-1286
- Improper Validation of Syntactic Correctness of Input
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
6.5 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
CWE-787
- Out-of-bounds Write
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.1 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
8.2 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.2 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
5.9 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
8.6 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
4.4 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
8.1 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
10.0 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
8.6 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
4.9 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
6.7 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
9.8 (Critical)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.5 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
4.5 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
5.4 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.3 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
5.3 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
6.5 (Medium)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
7.4 (High)
Affected products
Known affected
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/22.1
Oracle / Oracle / Database Server
|
vers:unknown/22.1 | ||
|
vers:unknown/13.5.0.0
Oracle / Oracle / Enterprise Manager for Oracle Database
|
vers:unknown/13.5.0.0 | ||
|
vers:oracle/>=19.3|<=19.22
Oracle / Oracle Database Server
|
vers:oracle/>=19.3|<=19.22 | ||
|
vers:oracle/>=19.3|<=19.26
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*
|
vers:oracle/>=19.3|<=19.26 | |
|
vers:oracle/>=21.3|<=21.13
Oracle / Oracle Database Server
|
vers:oracle/>=21.3|<=21.13 | ||
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=21.4|<=21.16
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*
|
vers:oracle/>=21.4|<=21.16 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle Database Server / Oracle Database Server
|
cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/13.5.0.0
Oracle / Oracle Enterprise Manager for Oracle Database
|
vers:oracle/13.5.0.0 | ||
|
vers:oracle/1.5.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*
|
vers:oracle/1.5.0 | |
|
vers:oracle/1.6.0
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*
|
vers:oracle/1.6.0 | |
|
vers:oracle/1.6.1
Oracle / Oracle NoSQL Database / Oracle NoSQL Database
|
cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*
|
vers:oracle/1.6.1 | |
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0
Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database
|
cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*
|
vers:oracle/>=22.1.1.1.0|<=22.1.1.30.0 | |
|
vers:semver/19.3|<=19.26
Oracle Corporation / Oracle Database Server
|
vers:semver/19.3|<=19.26 | ||
|
vers:semver/21.3|<=21.17
Oracle Corporation / Oracle Database Server
|
vers:semver/21.3|<=21.17 | ||
|
vers:semver/23.4|<=23.7
Oracle Corporation / Oracle Database Server
|
vers:semver/23.4|<=23.7 | ||
|
vers:oracle/25.1.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*
|
vers:oracle/25.1.0 | |
|
vers:oracle/25.2.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*
|
vers:oracle/25.2.0 | |
|
vers:oracle/>=23.8.0|<=23.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=23.8.0|<=23.11.0 | |
|
vers:oracle/>=24.1.0|<=24.11.0
Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework
|
cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*
|
vers:oracle/>=24.1.0|<=24.11.0 | |
|
vers:oracle/21.7.1.0.0
Oracle / Oracle Essbase / Oracle Essbase
|
cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/21.7.1.0.0 | |
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle / GoldenGate
|
vers:unknown/>=19.1.0.0.0|<=19.26.0.0.250219 | ||
|
vers:unknown/>=21.3|<=21.17
Oracle / Oracle / GoldenGate
|
vers:unknown/>=21.3|<=21.17 | ||
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10
Oracle / Oracle GoldenGate / GoldenGate Stream Analytics
|
cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.10 | |
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.26.0.0.250219 | |
|
vers:oracle/>=21.3|<=21.17
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*
|
vers:oracle/>=21.3|<=21.17 | |
|
vers:oracle/>=23.4|<=23.7
Oracle / Oracle GoldenGate / Oracle GoldenGate
|
cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.7 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.18 | |
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*
|
vers:oracle/>=21.3.0.0.0|<=21.16.0.0.0 | |
|
vers:oracle/>=23.4|<=23.6
Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters
|
cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*
|
vers:oracle/>=23.4|<=23.6 | |
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7
Oracle / Oracle GoldenGate Stream Analytics
|
vers:oracle/>=19.1.0.0.0|<=19.1.0.0.7 | ||
|
vers:oracle/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:oracle/23.1 | ||
|
vers:oracle/<23.1
Oracle / Big Data Spatial and Graph
|
vers:oracle/<23.1 | ||
|
vers:unknown/2.0
Oracle / Big Data Spatial and Graph
|
cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*
|
vers:unknown/2.0 | |
|
vers:unknown/2.0
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/2.0 | ||
|
vers:unknown/20.2
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/20.2 | ||
|
vers:unknown/23.1
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/23.1
Oracle / Big Data Spatial and Graph
|
vers:unknown/23.1 | ||
|
vers:unknown/none
Oracle / Oracle / Big Data Spatial and Graph
|
vers:unknown/none | ||
|
vers:oracle/23.4.3
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*
|
vers:oracle/23.4.3 | |
|
vers:oracle/24.3.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*
|
vers:oracle/24.3.0 | |
|
vers:oracle/23.4.4
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*
|
vers:oracle/23.4.4 | |
|
vers:oracle/24.4.0
Oracle / Oracle Graph Server and Client / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*
|
vers:oracle/24.4.0 | |
|
vers:oracle/<=22.4.7
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=22.4.7 | |
|
vers:oracle/<=23.4.2
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=23.4.2 | |
|
vers:oracle/<=24.1.0
Oracle / Graph Server and Client
|
cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*
|
vers:oracle/<=24.1.0 | |
|
vers:oracle/3.0.6
Oracle / Oracle Big Data Spatial and Graph
|
cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*
|
vers:oracle/3.0.6 | |
|
vers:oracle/12.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.1 | |
|
vers:oracle/12.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.2 | |
|
vers:oracle/12.1.0.3
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*
|
vers:oracle/12.1.0.3 | |
|
vers:oracle/18.1.0.0
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.0 | |
|
vers:oracle/18.1.0.1
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.1 | |
|
vers:oracle/18.1.0.2
Oracle / Oracle Secure Backup / Oracle Secure Backup
|
cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*
|
vers:oracle/18.1.0.2 | |
|
vers:semver/12.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.1 | ||
|
vers:semver/12.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.2 | ||
|
vers:semver/12.1.0.3
Oracle Corporation / Oracle Secure Backup
|
vers:semver/12.1.0.3 | ||
|
vers:semver/18.1.0.0
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.0 | ||
|
vers:semver/18.1.0.1
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.1 | ||
|
vers:semver/18.1.0.2
Oracle Corporation / Oracle Secure Backup
|
vers:semver/18.1.0.2 |
References
58 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores vari\u00ebrend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Improper Verification of Cryptographic Signature",
"title": "CWE-347"
},
{
"category": "general",
"text": "Improper Validation of Syntactic Correctness of Input",
"title": "CWE-1286"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
"title": "CWE-44"
},
{
"category": "general",
"text": "Sensitive Information in Resource Not Removed Before Reuse",
"title": "CWE-226"
},
{
"category": "general",
"text": "Use of Incorrectly-Resolved Name or Reference",
"title": "CWE-706"
},
{
"category": "general",
"text": "Incorrect Resource Transfer Between Spheres",
"title": "CWE-669"
},
{
"category": "general",
"text": "Improper Handling of Exceptional Conditions",
"title": "CWE-755"
},
{
"category": "general",
"text": "Improper Handling of Case Sensitivity",
"title": "CWE-178"
},
{
"category": "general",
"text": "Off-by-one Error",
"title": "CWE-193"
},
{
"category": "general",
"text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
"title": "CWE-601"
},
{
"category": "general",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "general",
"text": "Unprotected Transport of Credentials",
"title": "CWE-523"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
"title": "CWE-614"
},
{
"category": "general",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Incomplete Cleanup",
"title": "CWE-459"
},
{
"category": "general",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
"title": "CWE-74"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "general",
"text": "Improper Privilege Management",
"title": "CWE-269"
},
{
"category": "general",
"text": "Improper Authentication",
"title": "CWE-287"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd; oracle",
"url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Database Producten",
"tracking": {
"current_release_date": "2025-04-16T08:37:39.412900Z",
"generator": {
"date": "2025-02-25T15:15:00Z",
"engine": {
"name": "V.A.",
"version": "1.0"
}
},
"id": "NCSC-2025-0123",
"initial_release_date": "2025-04-16T08:37:39.412900Z",
"revision_history": [
{
"date": "2025-04-16T08:37:39.412900Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/22.1",
"product": {
"name": "vers:unknown/22.1",
"product_id": "CSAFPID-1304603"
}
}
],
"category": "product_name",
"name": "Database Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/13.5.0.0",
"product": {
"name": "vers:unknown/13.5.0.0",
"product_id": "CSAFPID-1201359"
}
}
],
"category": "product_name",
"name": "Enterprise Manager for Oracle Database"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
"product": {
"name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
"product_id": "CSAFPID-2698376"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/\u003e=21.3|\u003c=21.17",
"product": {
"name": "vers:unknown/\u003e=21.3|\u003c=21.17",
"product_id": "CSAFPID-2698377"
}
}
],
"category": "product_name",
"name": "GoldenGate"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/23.1",
"product": {
"name": "vers:oracle/23.1",
"product_id": "CSAFPID-1238473"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/2.0",
"product": {
"name": "vers:unknown/2.0",
"product_id": "CSAFPID-1237753"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/20.2",
"product": {
"name": "vers:unknown/20.2",
"product_id": "CSAFPID-1238475"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/23.1",
"product": {
"name": "vers:unknown/23.1",
"product_id": "CSAFPID-1296375"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/none",
"product": {
"name": "vers:unknown/none",
"product_id": "CSAFPID-1237603"
}
}
],
"category": "product_name",
"name": "Big Data Spatial and Graph"
}
],
"category": "product_family",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.3|\u003c=19.22",
"product": {
"name": "vers:oracle/\u003e=19.3|\u003c=19.22",
"product_id": "CSAFPID-1145825"
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=21.3|\u003c=21.13",
"product": {
"name": "vers:oracle/\u003e=21.3|\u003c=21.13",
"product_id": "CSAFPID-1145826"
}
}
],
"category": "product_name",
"name": "Oracle Database Server"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.3|\u003c=19.26",
"product": {
"name": "vers:oracle/\u003e=19.3|\u003c=19.26",
"product_id": "CSAFPID-2698969",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=21.3|\u003c=21.17",
"product": {
"name": "vers:oracle/\u003e=21.3|\u003c=21.17",
"product_id": "CSAFPID-2698968",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=21.4|\u003c=21.16",
"product": {
"name": "vers:oracle/\u003e=21.4|\u003c=21.16",
"product_id": "CSAFPID-1839905",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=23.4|\u003c=23.7",
"product": {
"name": "vers:oracle/\u003e=23.4|\u003c=23.7",
"product_id": "CSAFPID-2698934",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Database Server"
}
],
"category": "product_family",
"name": "Oracle Database Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/13.5.0.0",
"product": {
"name": "vers:oracle/13.5.0.0",
"product_id": "CSAFPID-1144644"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Manager for Oracle Database"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/1.5.0",
"product": {
"name": "vers:oracle/1.5.0",
"product_id": "CSAFPID-2699002",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/1.6.0",
"product": {
"name": "vers:oracle/1.6.0",
"product_id": "CSAFPID-2699003",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/1.6.1",
"product": {
"name": "vers:oracle/1.6.1",
"product_id": "CSAFPID-2699004",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle NoSQL Database"
}
],
"category": "product_family",
"name": "Oracle NoSQL Database"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
"product": {
"name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
"product_id": "CSAFPID-2699053",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle TimesTen In-Memory Database"
}
],
"category": "product_family",
"name": "Oracle TimesTen In-Memory Database"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/25.1.0",
"product": {
"name": "vers:oracle/25.1.0",
"product_id": "CSAFPID-2698932",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/25.2.0",
"product": {
"name": "vers:oracle/25.2.0",
"product_id": "CSAFPID-2698931",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
"product": {
"name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
"product_id": "CSAFPID-2698930",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
"product": {
"name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
"product_id": "CSAFPID-2698933",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Autonomous Health Framework"
}
],
"category": "product_family",
"name": "Oracle Autonomous Health Framework"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/21.7.1.0.0",
"product": {
"name": "vers:oracle/21.7.1.0.0",
"product_id": "CSAFPID-2698943",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Essbase"
}
],
"category": "product_family",
"name": "Oracle Essbase"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
"product": {
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
"product_id": "CSAFPID-2698949",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "GoldenGate Stream Analytics"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
"product": {
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
"product_id": "CSAFPID-2698941",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=21.3|\u003c=21.17",
"product": {
"name": "vers:oracle/\u003e=21.3|\u003c=21.17",
"product_id": "CSAFPID-2698942",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=23.4|\u003c=23.7",
"product": {
"name": "vers:oracle/\u003e=23.4|\u003c=23.7",
"product_id": "CSAFPID-2699022",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle GoldenGate"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
"product": {
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
"product_id": "CSAFPID-1839977",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
"product": {
"name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
"product_id": "CSAFPID-1840034",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=23.4|\u003c=23.6",
"product": {
"name": "vers:oracle/\u003e=23.4|\u003c=23.6",
"product_id": "CSAFPID-1840035",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle GoldenGate Big Data and Application Adapters"
}
],
"category": "product_family",
"name": "Oracle GoldenGate"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
"product": {
"name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
"product_id": "CSAFPID-1144602"
}
}
],
"category": "product_name",
"name": "Oracle GoldenGate Stream Analytics"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003c23.1",
"product": {
"name": "vers:oracle/\u003c23.1",
"product_id": "CSAFPID-1145800"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/2.0",
"product": {
"name": "vers:unknown/2.0",
"product_id": "CSAFPID-356315",
"product_identification_helper": {
"cpe": "cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/23.1",
"product": {
"name": "vers:unknown/23.1",
"product_id": "CSAFPID-356152"
}
}
],
"category": "product_name",
"name": "Big Data Spatial and Graph"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/23.4.3",
"product": {
"name": "vers:oracle/23.4.3",
"product_id": "CSAFPID-2699065",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/24.3.0",
"product": {
"name": "vers:oracle/24.3.0",
"product_id": "CSAFPID-2699066",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/23.4.4",
"product": {
"name": "vers:oracle/23.4.4",
"product_id": "CSAFPID-1840017",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/24.4.0",
"product": {
"name": "vers:oracle/24.4.0",
"product_id": "CSAFPID-1840013",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Graph Server and Client"
}
],
"category": "product_family",
"name": "Oracle Graph Server and Client"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/\u003c=22.4.7",
"product": {
"name": "vers:oracle/\u003c=22.4.7",
"product_id": "CSAFPID-1145419",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003c=23.4.2",
"product": {
"name": "vers:oracle/\u003c=23.4.2",
"product_id": "CSAFPID-1145421",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/\u003c=24.1.0",
"product": {
"name": "vers:oracle/\u003c=24.1.0",
"product_id": "CSAFPID-1145422",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Graph Server and Client"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/3.0.6",
"product": {
"name": "vers:oracle/3.0.6",
"product_id": "CSAFPID-1145420",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Big Data Spatial and Graph"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.1.0.1",
"product": {
"name": "vers:oracle/12.1.0.1",
"product_id": "CSAFPID-2699109",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/12.1.0.2",
"product": {
"name": "vers:oracle/12.1.0.2",
"product_id": "CSAFPID-2699107",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/12.1.0.3",
"product": {
"name": "vers:oracle/12.1.0.3",
"product_id": "CSAFPID-2699106",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/18.1.0.0",
"product": {
"name": "vers:oracle/18.1.0.0",
"product_id": "CSAFPID-2699110",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/18.1.0.1",
"product": {
"name": "vers:oracle/18.1.0.1",
"product_id": "CSAFPID-2698972",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/18.1.0.2",
"product": {
"name": "vers:oracle/18.1.0.2",
"product_id": "CSAFPID-2699108",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Secure Backup"
}
],
"category": "product_family",
"name": "Oracle Secure Backup"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:semver/19.3|\u003c=19.26",
"product": {
"name": "vers:semver/19.3|\u003c=19.26",
"product_id": "CSAFPID-2698485"
}
},
{
"category": "product_version_range",
"name": "vers:semver/21.3|\u003c=21.17",
"product": {
"name": "vers:semver/21.3|\u003c=21.17",
"product_id": "CSAFPID-2698486"
}
},
{
"category": "product_version_range",
"name": "vers:semver/23.4|\u003c=23.7",
"product": {
"name": "vers:semver/23.4|\u003c=23.7",
"product_id": "CSAFPID-2698487"
}
}
],
"category": "product_name",
"name": "Oracle Database Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:semver/12.1.0.1",
"product": {
"name": "vers:semver/12.1.0.1",
"product_id": "CSAFPID-2698463"
}
},
{
"category": "product_version_range",
"name": "vers:semver/12.1.0.2",
"product": {
"name": "vers:semver/12.1.0.2",
"product_id": "CSAFPID-2698464"
}
},
{
"category": "product_version_range",
"name": "vers:semver/12.1.0.3",
"product": {
"name": "vers:semver/12.1.0.3",
"product_id": "CSAFPID-2698465"
}
},
{
"category": "product_version_range",
"name": "vers:semver/18.1.0.0",
"product": {
"name": "vers:semver/18.1.0.0",
"product_id": "CSAFPID-2698466"
}
},
{
"category": "product_version_range",
"name": "vers:semver/18.1.0.1",
"product": {
"name": "vers:semver/18.1.0.1",
"product_id": "CSAFPID-2698467"
}
},
{
"category": "product_version_range",
"name": "vers:semver/18.1.0.2",
"product": {
"name": "vers:semver/18.1.0.2",
"product_id": "CSAFPID-2698468"
}
}
],
"category": "product_name",
"name": "Oracle Secure Backup"
}
],
"category": "vendor",
"name": "Oracle Corporation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-1935",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-1935",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1935.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2020-1935"
},
{
"cve": "CVE-2020-1938",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "other",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "other",
"text": "Improper Privilege Management",
"title": "CWE-269"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-1938",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1938.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2020-1938"
},
{
"cve": "CVE-2020-9484",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-9484",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-9484.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2020-9484"
},
{
"cve": "CVE-2020-11996",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-11996",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-11996.json"
}
],
"title": "CVE-2020-11996"
},
{
"cve": "CVE-2020-13935",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-13935",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13935.json"
}
],
"title": "CVE-2020-13935"
},
{
"cve": "CVE-2020-13943",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-13943",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13943.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2020-13943"
},
{
"cve": "CVE-2020-36843",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"notes": [
{
"category": "other",
"text": "Improper Verification of Cryptographic Signature",
"title": "CWE-347"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-36843",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-36843.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2020-36843"
},
{
"cve": "CVE-2021-24122",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-24122",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-24122.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-24122"
},
{
"cve": "CVE-2021-25122",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-25122",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25122.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-25122"
},
{
"cve": "CVE-2021-25329",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-25329",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25329.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-25329"
},
{
"cve": "CVE-2021-30640",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "other",
"text": "Improper Authentication",
"title": "CWE-287"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-30640",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-30640.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-30640"
},
{
"cve": "CVE-2021-33037",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-33037",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-33037.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-33037"
},
{
"cve": "CVE-2021-41079",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-41079",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41079.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-41079"
},
{
"cve": "CVE-2021-41184",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-41184",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41184.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2021-42575",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-42575",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-42575.json"
}
],
"title": "CVE-2021-42575"
},
{
"cve": "CVE-2021-43980",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-43980",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-43980.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2021-43980"
},
{
"cve": "CVE-2022-3786",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"notes": [
{
"category": "other",
"text": "Off-by-one Error",
"title": "CWE-193"
},
{
"category": "other",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-3786",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3786.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2022-3786"
},
{
"cve": "CVE-2022-25762",
"cwe": {
"id": "CWE-226",
"name": "Sensitive Information in Resource Not Removed Before Reuse"
},
"notes": [
{
"category": "other",
"text": "Sensitive Information in Resource Not Removed Before Reuse",
"title": "CWE-226"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Improper Handling of Exceptional Conditions",
"title": "CWE-755"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-25762",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-25762.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2022-25762"
},
{
"cve": "CVE-2022-42252",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-42252",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42252.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2022-42252"
},
{
"cve": "CVE-2023-28708",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Unprotected Transport of Credentials",
"title": "CWE-523"
},
{
"category": "other",
"text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
"title": "CWE-614"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-28708",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28708.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-28708"
},
{
"cve": "CVE-2023-34053",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-34053",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34053.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-34053"
},
{
"cve": "CVE-2023-41080",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"notes": [
{
"category": "other",
"text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
"title": "CWE-601"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-41080",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41080.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-41080"
},
{
"cve": "CVE-2023-42795",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"notes": [
{
"category": "other",
"text": "Incomplete Cleanup",
"title": "CWE-459"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-42795",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-42795.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-42795"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-44487",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-45648",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-45648",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-45648.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-45648"
},
{
"cve": "CVE-2023-46589",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-46589",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46589.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2023-46589"
},
{
"cve": "CVE-2024-6763",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Syntactic Correctness of Input",
"title": "CWE-1286"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-6763",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6763.json"
}
],
"title": "CVE-2024-6763"
},
{
"cve": "CVE-2024-8176",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-8176",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8176.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-8176"
},
{
"cve": "CVE-2024-8184",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-8184",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8184.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-8184"
},
{
"cve": "CVE-2024-9143",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-9143",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json"
}
],
"title": "CVE-2024-9143"
},
{
"cve": "CVE-2024-11053",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11053",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11053.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-11053"
},
{
"cve": "CVE-2024-11233",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11233",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11233.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-11233"
},
{
"cve": "CVE-2024-11234",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "other",
"text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
"title": "CWE-74"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11234",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11234.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-11234"
},
{
"cve": "CVE-2024-11236",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11236",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11236.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-11236"
},
{
"cve": "CVE-2024-13176",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-13176",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-13176.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-13176"
},
{
"cve": "CVE-2024-23672",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"notes": [
{
"category": "other",
"text": "Incomplete Cleanup",
"title": "CWE-459"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-23672",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23672.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-23672"
},
{
"cve": "CVE-2024-24549",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-24549",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-24549"
},
{
"cve": "CVE-2024-36114",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-36114",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36114.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-36114"
},
{
"cve": "CVE-2024-37891",
"cwe": {
"id": "CWE-669",
"name": "Incorrect Resource Transfer Between Spheres"
},
"notes": [
{
"category": "other",
"text": "Incorrect Resource Transfer Between Spheres",
"title": "CWE-669"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37891",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-37891"
},
{
"cve": "CVE-2024-38819",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-38819",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-38819"
},
{
"cve": "CVE-2024-38820",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "other",
"text": "Improper Handling of Case Sensitivity",
"title": "CWE-178"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-38820",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-38820"
},
{
"cve": "CVE-2024-38999",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-38999",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-38999"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-39338",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39338.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-39338"
},
{
"cve": "CVE-2024-47554",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47554",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-47561",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47561",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-47561"
},
{
"cve": "CVE-2024-53382",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-53382",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-53382.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-53382"
},
{
"cve": "CVE-2024-57699",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-57699",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-57699.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2024-57699"
},
{
"cve": "CVE-2025-21578",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21578",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21578.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-21578"
},
{
"cve": "CVE-2025-24813",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "other",
"text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
"title": "CWE-44"
},
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "other",
"text": "Use of Incorrectly-Resolved Name or Reference",
"title": "CWE-706"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24813",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24813.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-24813"
},
{
"cve": "CVE-2025-24970",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24970",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24970.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-24970"
},
{
"cve": "CVE-2025-25193",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-25193",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-25193.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-25193"
},
{
"cve": "CVE-2025-26791",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-26791",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-26791.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-26791"
},
{
"cve": "CVE-2025-30694",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30694",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30694.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-30694"
},
{
"cve": "CVE-2025-30701",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30701",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30701.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-30701"
},
{
"cve": "CVE-2025-30702",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30702",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30702.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-30702"
},
{
"cve": "CVE-2025-30733",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30733",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30733.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-30733"
},
{
"cve": "CVE-2025-30736",
"product_status": {
"known_affected": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30736",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30736.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1304603",
"CSAFPID-1201359",
"CSAFPID-1145825",
"CSAFPID-2698969",
"CSAFPID-1145826",
"CSAFPID-2698968",
"CSAFPID-1839905",
"CSAFPID-2698934",
"CSAFPID-1144644",
"CSAFPID-2699002",
"CSAFPID-2699003",
"CSAFPID-2699004",
"CSAFPID-2699053",
"CSAFPID-2698485",
"CSAFPID-2698486",
"CSAFPID-2698487",
"CSAFPID-2698932",
"CSAFPID-2698931",
"CSAFPID-2698930",
"CSAFPID-2698933",
"CSAFPID-2698943",
"CSAFPID-2698376",
"CSAFPID-2698377",
"CSAFPID-2698949",
"CSAFPID-2698941",
"CSAFPID-2698942",
"CSAFPID-2699022",
"CSAFPID-1839977",
"CSAFPID-1840034",
"CSAFPID-1840035",
"CSAFPID-1144602",
"CSAFPID-1238473",
"CSAFPID-1145800",
"CSAFPID-356315",
"CSAFPID-1237753",
"CSAFPID-1238475",
"CSAFPID-1296375",
"CSAFPID-356152",
"CSAFPID-1237603",
"CSAFPID-2699065",
"CSAFPID-2699066",
"CSAFPID-1840017",
"CSAFPID-1840013",
"CSAFPID-1145419",
"CSAFPID-1145421",
"CSAFPID-1145422",
"CSAFPID-1145420",
"CSAFPID-2699109",
"CSAFPID-2699107",
"CSAFPID-2699106",
"CSAFPID-2699110",
"CSAFPID-2698972",
"CSAFPID-2699108",
"CSAFPID-2698463",
"CSAFPID-2698464",
"CSAFPID-2698465",
"CSAFPID-2698466",
"CSAFPID-2698467",
"CSAFPID-2698468"
]
}
],
"title": "CVE-2025-30736"
}
]
}
OXAS-ADV-2024-0003
Vulnerability from csaf_ox - Published: 2024-04-24 00:00 - Updated: 2024-08-19 00:00Summary
OX App Suite Security Advisory OXAS-ADV-2024-0003
Severity
Medium
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress. This issue affects a Apache Commons Compress library shipped with OX App Suite.
5.5 (Medium)
Affected products
Last affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite backend 7.10.6-rev61
Open-Xchange GmbH / OX App Suite backend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev61:*:*:*:*:*:*
|
7.10.6-rev61 |
Vendor Fix
|
|
OX App Suite backend 8.22
Open-Xchange GmbH / OX App Suite backend
|
cpe:2.3:a:open-xchange:app_suite:8.22:*:*:*:*:*:*:*
|
8.22 |
Vendor Fix
|
First fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite backend 7.10.6-rev62
Open-Xchange GmbH / OX App Suite backend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev62:*:*:*:*:*:*
|
7.10.6-rev62 | |
|
OX App Suite backend 8.23
Open-Xchange GmbH / OX App Suite backend
|
cpe:2.3:a:open-xchange:app_suite:8.23:*:*:*:*:*:*:*
|
8.23 |
Threats
Impact
The vulnerability can potentially be exploited through OX App Suite and affect availability of the service.
Exploit Status
No publicly available exploits are known.
Module savepoints could be abused to inject references to malicious code delivered through the same domain.
5.4 (Medium)
Affected products
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite frontend 7.10.6-rev42
Open-Xchange GmbH / OX App Suite frontend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev42:*:*:*:*:*:*
|
7.10.6-rev42 |
Vendor Fix
|
First fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite frontend 7.10.6-rev43
Open-Xchange GmbH / OX App Suite frontend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev43:*:*:*:*:*:*
|
7.10.6-rev43 |
Threats
Impact
Attackers could perform malicious API requests or extract information from the users account. Exploiting this vulnerability requires temporary access to an account or successful social engineering to make a user follow a prepared link to a malicious account.
Exploit Status
No publicly available exploits are known.
JQuery third-party components with known vulnerabilities have been shipped.
6.1 (Medium)
Affected products
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite frontend 7.10.6-rev42
Open-Xchange GmbH / OX App Suite frontend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev42:*:*:*:*:*:*
|
7.10.6-rev42 |
Vendor Fix
|
First fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
OX App Suite frontend 7.10.6-rev43
Open-Xchange GmbH / OX App Suite frontend
|
cpe:2.3:a:open-xchange:app_suite:7.10.6:rev43:*:*:*:*:*:*
|
7.10.6-rev43 |
Threats
Impact
This update serves as a preventive measure since no practical exploitation in the context of OX App Suite is feasible.
Exploit Status
No publicly available exploits are known.
References
5 references
{
"document": {
"aggregate_severity": {
"text": "MEDIUM"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"lang": "en-US",
"publisher": {
"category": "vendor",
"name": "Open-Xchange GmbH",
"namespace": "https://open-xchange.com/"
},
"references": [
{
"category": "external",
"summary": "Release Notes",
"url": "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6277_7.10.6_2024-05-06.pdf"
},
{
"category": "self",
"summary": "Canonical CSAF document",
"url": "https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2024/oxas-adv-2024-0003.json"
},
{
"category": "self",
"summary": "Markdown representation",
"url": "https://documentation.open-xchange.com/appsuite/security/advisories/md/2024/oxas-adv-2024-0003.md"
},
{
"category": "self",
"summary": "HTML representation",
"url": "https://documentation.open-xchange.com/appsuite/security/advisories/html/2024/oxas-adv-2024-0003.html"
},
{
"category": "self",
"summary": "Plain-text representation",
"url": "https://documentation.open-xchange.com/appsuite/security/advisories/txt/2024/oxas-adv-2024-0003.txt"
}
],
"title": "OX App Suite Security Advisory OXAS-ADV-2024-0003",
"tracking": {
"current_release_date": "2024-08-19T00:00:00+00:00",
"generator": {
"date": "2024-08-19T07:26:47+00:00",
"engine": {
"name": "OX CSAF",
"version": "1.0.0"
}
},
"id": "OXAS-ADV-2024-0003",
"initial_release_date": "2024-04-24T00:00:00+02:00",
"revision_history": [
{
"date": "2024-04-24T00:00:00+02:00",
"number": "1",
"summary": "Initial release"
},
{
"date": "2024-08-19T00:00:00+00:00",
"number": "2",
"summary": "Public release"
},
{
"date": "2024-08-19T00:00:00+00:00",
"number": "3",
"summary": "Public release"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "7.10.6-rev61",
"product": {
"name": "OX App Suite backend 7.10.6-rev61",
"product_id": "OXAS-BACKEND_7.10.6-rev61",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:7.10.6:rev61:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "8.22",
"product": {
"name": "OX App Suite backend 8.22",
"product_id": "OXAS-BACKEND_8.22",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:8.22:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "7.10.6-rev62",
"product": {
"name": "OX App Suite backend 7.10.6-rev62",
"product_id": "OXAS-BACKEND_7.10.6-rev62",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:7.10.6:rev62:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "8.23",
"product": {
"name": "OX App Suite backend 8.23",
"product_id": "OXAS-BACKEND_8.23",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:8.23:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "OX App Suite backend"
},
{
"branches": [
{
"category": "product_version",
"name": "7.10.6-rev42",
"product": {
"name": "OX App Suite frontend 7.10.6-rev42",
"product_id": "OXAS-FRONTEND_7.10.6-rev42",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:7.10.6:rev42:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "7.10.6-rev43",
"product": {
"name": "OX App Suite frontend 7.10.6-rev43",
"product_id": "OXAS-FRONTEND_7.10.6-rev43",
"product_identification_helper": {
"cpe": "cpe:2.3:a:open-xchange:app_suite:7.10.6:rev43:*:*:*:*:*:*",
"x_generic_uris": [
{
"namespace": "https://documentation.open-xchange.com/appsuite/security/advisories/#urn-parsing",
"uri": "urn:open-xchange:app_suite:patch-id:6277"
}
]
}
}
}
],
"category": "product_name",
"name": "OX App Suite frontend"
}
],
"category": "vendor",
"name": "Open-Xchange GmbH"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-25710",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-01T16:15:20+01:00",
"ids": [
{
"system_name": "OX Bug",
"text": "MWB-2525"
}
],
"notes": [
{
"category": "description",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027) vulnerability in Apache Commons Compress. This issue affects a Apache Commons Compress library shipped with OX App Suite."
}
],
"product_status": {
"first_fixed": [
"OXAS-BACKEND_7.10.6-rev62",
"OXAS-BACKEND_8.23"
],
"last_affected": [
"OXAS-BACKEND_7.10.6-rev61",
"OXAS-BACKEND_8.22"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-11T14:13:57+02:00",
"details": "Please deploy the provided updates and patch releases. We have updated the vulnerable library as a precaution to avoid potential exploitation.",
"product_ids": [
"OXAS-BACKEND_7.10.6-rev61",
"OXAS-BACKEND_8.22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OXAS-BACKEND_7.10.6-rev61",
"OXAS-BACKEND_8.22"
]
}
],
"threats": [
{
"category": "impact",
"details": "The vulnerability can potentially be exploited through OX App Suite and affect availability of the service."
},
{
"category": "exploit_status",
"details": "No publicly available exploits are known."
}
],
"title": "Apache Commons Compress library is prone to a denial of service (DoS) vulnerability."
},
{
"cve": "CVE-2024-25582",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-01-30T08:49:22+01:00",
"ids": [
{
"system_name": "OX Bug",
"text": "OXUIB-2718"
}
],
"notes": [
{
"category": "description",
"text": "Module savepoints could be abused to inject references to malicious code delivered through the same domain."
}
],
"product_status": {
"first_fixed": [
"OXAS-FRONTEND_7.10.6-rev43"
],
"last_affected": [
"OXAS-FRONTEND_7.10.6-rev42"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2024-04-04T15:19:41+02:00",
"details": "Please deploy the provided updates and patch releases. The savepoint module path has been restricted to modules that provide the feature, excluding any arbitrary or non-existing modules.",
"product_ids": [
"OXAS-FRONTEND_7.10.6-rev42"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"OXAS-FRONTEND_7.10.6-rev42"
]
}
],
"threats": [
{
"category": "impact",
"details": "Attackers could perform malicious API requests or extract information from the users account. Exploiting this vulnerability requires temporary access to an account or successful social engineering to make a user follow a prepared link to a malicious account."
},
{
"category": "exploit_status",
"details": "No publicly available exploits are known."
}
],
"title": "XSS using arbitrary relative path to UI module"
},
{
"cve": "CVE-2021-41184",
"cwe": {
"id": "CWE-80",
"name": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"
},
"discovery_date": "2024-01-15T14:01:36+01:00",
"ids": [
{
"system_name": "OX Bug",
"text": "OXUIB-2699"
}
],
"notes": [
{
"category": "description",
"text": "JQuery third-party components with known vulnerabilities have been shipped."
}
],
"product_status": {
"first_fixed": [
"OXAS-FRONTEND_7.10.6-rev43"
],
"last_affected": [
"OXAS-FRONTEND_7.10.6-rev42"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2024-03-28T15:13:17+01:00",
"details": "Please deploy the provided updates and patch releases. The relevant components have been updated to mitigate potential exploitation.",
"product_ids": [
"OXAS-FRONTEND_7.10.6-rev42"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"OXAS-FRONTEND_7.10.6-rev42"
]
}
],
"threats": [
{
"category": "impact",
"details": "This update serves as a preventive measure since no practical exploitation in the context of OX App Suite is feasible."
},
{
"category": "exploit_status",
"details": "No publicly available exploits are known."
}
],
"title": "Outdated jquery-ui shipped with 7.10.6"
}
]
}
RHSA-2022:4711
Vulnerability from csaf_redhat - Published: 2022-05-26 16:25 - Updated: 2026-04-30 16:09Summary
Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.0] security update
Severity
Moderate
Notes
Topic: Updated ovirt-engine packages that fix several bugs and add various enhancements are now available.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.
Security Fix(es):
* nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes (CVE-2021-3807)
* nodejs-trim-off-newlines: ReDoS via string processing (CVE-2021-23425)
* normalize-url: ReDoS for data URLs (CVE-2021-33502)
* jquery-ui: XSS in the altField option of the datepicker widget (CVE-2021-41182)
* jquery-ui: XSS in *Text options of the datepicker widget (CVE-2021-41183)
* jquery-ui: XSS in the 'of' option of the .position() util (CVE-2021-41184)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
A list of bugs fixed in this update is available in the Technical Notes book:
https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.4/html-single/technical_notes
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A regular expression denial of service (ReDoS) vulnerability was found in nodejs-ansi-regex. This could possibly cause an application using ansi-regex to use an excessive amount of CPU time when matching crafted ANSI escape codes.
7.5 (High)
Affected products
Fixed
2 products
Known not affected
51 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
A flaw was found in nodejs-trim-off-newlines. All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing. The highest threat from this vulnerability is to system availability.
5.3 (Medium)
Affected products
Fixed
2 products
Known not affected
51 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
A flaw was found in normalize-url. Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — |
Vendor Fix
fix
|
Known not affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.
6.5 (Medium)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
Known not affected
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.
6.5 (Medium)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
Known not affected
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
6.5 (Medium)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch | — |
Vendor Fix
fix
|
Known not affected
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src | — | ||
| Unresolved product id: 8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch | — |
Threats
Impact
Moderate
References
127 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated ovirt-engine packages that fix several bugs and add various enhancements are now available.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.\n\nSecurity Fix(es):\n\n* nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes (CVE-2021-3807)\n\n* nodejs-trim-off-newlines: ReDoS via string processing (CVE-2021-23425)\n\n* normalize-url: ReDoS for data URLs (CVE-2021-33502)\n\n* jquery-ui: XSS in the altField option of the datepicker widget (CVE-2021-41182)\n\n* jquery-ui: XSS in *Text options of the datepicker widget (CVE-2021-41183)\n\n* jquery-ui: XSS in the \u0027of\u0027 option of the .position() util (CVE-2021-41184)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nA list of bugs fixed in this update is available in the Technical Notes book:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_virtualization/4.4/html-single/technical_notes",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:4711",
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.4/html-single/technical_notes",
"url": "https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.4/html-single/technical_notes"
},
{
"category": "external",
"summary": "655153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=655153"
},
{
"category": "external",
"summary": "977778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=977778"
},
{
"category": "external",
"summary": "1624015",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1624015"
},
{
"category": "external",
"summary": "1648985",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1648985"
},
{
"category": "external",
"summary": "1667517",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667517"
},
{
"category": "external",
"summary": "1687845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1687845"
},
{
"category": "external",
"summary": "1781241",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781241"
},
{
"category": "external",
"summary": "1782056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1782056"
},
{
"category": "external",
"summary": "1849169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1849169"
},
{
"category": "external",
"summary": "1878930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1878930"
},
{
"category": "external",
"summary": "1922977",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922977"
},
{
"category": "external",
"summary": "1926625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926625"
},
{
"category": "external",
"summary": "1927985",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927985"
},
{
"category": "external",
"summary": "1944290",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944290"
},
{
"category": "external",
"summary": "1944834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944834"
},
{
"category": "external",
"summary": "1956295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1956295"
},
{
"category": "external",
"summary": "1959186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1959186"
},
{
"category": "external",
"summary": "1964208",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1964208"
},
{
"category": "external",
"summary": "1964461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1964461"
},
{
"category": "external",
"summary": "1971622",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1971622"
},
{
"category": "external",
"summary": "1974741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1974741"
},
{
"category": "external",
"summary": "1979441",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979441"
},
{
"category": "external",
"summary": "1979797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979797"
},
{
"category": "external",
"summary": "1980192",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980192"
},
{
"category": "external",
"summary": "1986726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1986726"
},
{
"category": "external",
"summary": "1986834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1986834"
},
{
"category": "external",
"summary": "1987121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1987121"
},
{
"category": "external",
"summary": "1988496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1988496"
},
{
"category": "external",
"summary": "1990462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1990462"
},
{
"category": "external",
"summary": "1991240",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1991240"
},
{
"category": "external",
"summary": "1995793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995793"
},
{
"category": "external",
"summary": "1996123",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1996123"
},
{
"category": "external",
"summary": "1998255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1998255"
},
{
"category": "external",
"summary": "1999698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1999698"
},
{
"category": "external",
"summary": "2000031",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2000031"
},
{
"category": "external",
"summary": "2002283",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2002283"
},
{
"category": "external",
"summary": "2003883",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003883"
},
{
"category": "external",
"summary": "2003996",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003996"
},
{
"category": "external",
"summary": "2006602",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2006602"
},
{
"category": "external",
"summary": "2006745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2006745"
},
{
"category": "external",
"summary": "2007384",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2007384"
},
{
"category": "external",
"summary": "2007557",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2007557"
},
{
"category": "external",
"summary": "2008798",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2008798"
},
{
"category": "external",
"summary": "2010203",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2010203"
},
{
"category": "external",
"summary": "2010903",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2010903"
},
{
"category": "external",
"summary": "2013928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2013928"
},
{
"category": "external",
"summary": "2014888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2014888"
},
{
"category": "external",
"summary": "2015796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2015796"
},
{
"category": "external",
"summary": "2019144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019144"
},
{
"category": "external",
"summary": "2019148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019148"
},
{
"category": "external",
"summary": "2019153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019153"
},
{
"category": "external",
"summary": "2021217",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021217"
},
{
"category": "external",
"summary": "2023250",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2023250"
},
{
"category": "external",
"summary": "2023786",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2023786"
},
{
"category": "external",
"summary": "2024202",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2024202"
},
{
"category": "external",
"summary": "2025936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2025936"
},
{
"category": "external",
"summary": "2030596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030596"
},
{
"category": "external",
"summary": "2030663",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030663"
},
{
"category": "external",
"summary": "2031027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2031027"
},
{
"category": "external",
"summary": "2035051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2035051"
},
{
"category": "external",
"summary": "2037115",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037115"
},
{
"category": "external",
"summary": "2037121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037121"
},
{
"category": "external",
"summary": "2040361",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040361"
},
{
"category": "external",
"summary": "2040402",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040402"
},
{
"category": "external",
"summary": "2040474",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040474"
},
{
"category": "external",
"summary": "2041544",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2041544"
},
{
"category": "external",
"summary": "2043146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043146"
},
{
"category": "external",
"summary": "2044273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044273"
},
{
"category": "external",
"summary": "2048546",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2048546"
},
{
"category": "external",
"summary": "2050566",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2050566"
},
{
"category": "external",
"summary": "2050614",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2050614"
},
{
"category": "external",
"summary": "2051857",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2051857"
},
{
"category": "external",
"summary": "2052557",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2052557"
},
{
"category": "external",
"summary": "2052690",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2052690"
},
{
"category": "external",
"summary": "2054756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054756"
},
{
"category": "external",
"summary": "2055136",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2055136"
},
{
"category": "external",
"summary": "2056021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056021"
},
{
"category": "external",
"summary": "2056052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056052"
},
{
"category": "external",
"summary": "2056126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056126"
},
{
"category": "external",
"summary": "2058264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058264"
},
{
"category": "external",
"summary": "2059521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059521"
},
{
"category": "external",
"summary": "2059877",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059877"
},
{
"category": "external",
"summary": "2061904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061904"
},
{
"category": "external",
"summary": "2065052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2065052"
},
{
"category": "external",
"summary": "2066084",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066084"
},
{
"category": "external",
"summary": "2066283",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066283"
},
{
"category": "external",
"summary": "2069972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069972"
},
{
"category": "external",
"summary": "2070156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2070156"
},
{
"category": "external",
"summary": "2071468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2071468"
},
{
"category": "external",
"summary": "2072637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072637"
},
{
"category": "external",
"summary": "2072639",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072639"
},
{
"category": "external",
"summary": "2072641",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072641"
},
{
"category": "external",
"summary": "2072642",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072642"
},
{
"category": "external",
"summary": "2072645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072645"
},
{
"category": "external",
"summary": "2072646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072646"
},
{
"category": "external",
"summary": "2075352",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2075352"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_4711.json"
}
],
"title": "Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.0] security update",
"tracking": {
"current_release_date": "2026-04-30T16:09:46+00:00",
"generator": {
"date": "2026-04-30T16:09:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHSA-2022:4711",
"initial_release_date": "2022-05-26T16:25:03+00:00",
"revision_history": [
{
"date": "2022-05-26T16:25:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-05-26T16:25:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-30T16:09:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product": {
"name": "RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhev_manager:4.4:el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.src",
"product": {
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.src",
"product_id": "ovirt-dependencies-0:4.5.1-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-dependencies@4.5.1-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.src",
"product": {
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.src",
"product_id": "ovirt-log-collector-0:4.4.5-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-log-collector@4.4.5-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"product": {
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"product_id": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhv-log-collector-analyzer@1.0.13-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "engine-db-query-0:1.6.4-1.el8ev.src",
"product": {
"name": "engine-db-query-0:1.6.4-1.el8ev.src",
"product_id": "engine-db-query-0:1.6.4-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/engine-db-query@1.6.4-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"product": {
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"product_id": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vdsm-jsonrpc-java@1.7.1-2.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "apache-sshd-1:2.8.0-0.1.el8ev.src",
"product": {
"name": "apache-sshd-1:2.8.0-0.1.el8ev.src",
"product_id": "apache-sshd-1:2.8.0-0.1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apache-sshd@2.8.0-0.1.el8ev?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"product": {
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"product_id": "rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-setup-plugins@4.5.0-2.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"product": {
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"product_id": "rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-branding-rhv@4.4.11-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"product": {
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"product_id": "ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-dwh@4.5.2-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.src",
"product": {
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.src",
"product_id": "ovirt-web-ui-0:1.8.1-2.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-web-ui@1.8.1-2.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"product": {
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"product_id": "ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-metrics@1.6.0-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-runner-0:2.1.3-1.el8ev.src",
"product": {
"name": "ansible-runner-0:2.1.3-1.el8ev.src",
"product_id": "ansible-runner-0:2.1.3-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-runner@2.1.3-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"product": {
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"product_id": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-ui-extensions@1.3.3-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"product": {
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"product_id": "ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine@4.5.0.7-0.9.el8ev?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"product": {
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"product_id": "ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-dependencies@4.5.1-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"product": {
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"product_id": "ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-log-collector@4.4.5-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"product": {
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"product_id": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhv-log-collector-analyzer@1.0.13-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "engine-db-query-0:1.6.4-1.el8ev.noarch",
"product": {
"name": "engine-db-query-0:1.6.4-1.el8ev.noarch",
"product_id": "engine-db-query-0:1.6.4-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/engine-db-query@1.6.4-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"product": {
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"product_id": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vdsm-jsonrpc-java@1.7.1-2.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch",
"product": {
"name": "vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch",
"product_id": "vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vdsm-jsonrpc-java-javadoc@1.7.1-2.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"product": {
"name": "apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"product_id": "apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apache-sshd@2.8.0-0.1.el8ev?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"product": {
"name": "apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"product_id": "apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apache-sshd-javadoc@2.8.0-0.1.el8ev?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"product": {
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"product_id": "rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-setup-plugins@4.5.0-2.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"product": {
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"product_id": "rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm-branding-rhv@4.4.11-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"product": {
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"product_id": "ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-dwh@4.5.2-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"product": {
"name": "ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"product_id": "ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-dwh-grafana-integration-setup@4.5.2-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"product": {
"name": "ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"product_id": "ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-dwh-setup@4.5.2-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"product": {
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"product_id": "ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-web-ui@1.8.1-2.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"product": {
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"product_id": "ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-metrics@1.6.0-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-runner-0:2.1.3-1.el8ev.noarch",
"product": {
"name": "ansible-runner-0:2.1.3-1.el8ev.noarch",
"product_id": "ansible-runner-0:2.1.3-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-runner@2.1.3-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"product": {
"name": "python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"product_id": "python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python38-ansible-runner@2.1.3-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"product": {
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"product_id": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-ui-extensions@1.3.3-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-backend@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-dbscripts@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-health-check-bundler@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-restapi@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-base@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-cinderlib@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-imageio@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine-common@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-vmconsole-proxy-helper@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-setup-plugin-websocket-proxy@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-tools@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-tools-backup@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-vmconsole-proxy-helper@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-webadmin-portal@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ovirt-engine-websocket-proxy@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-ovirt-engine-lib@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"product": {
"name": "rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"product_id": "rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhvm@4.5.0.7-0.9.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python38-docutils-0:0.14-12.4.el8ev.noarch",
"product": {
"name": "python38-docutils-0:0.14-12.4.el8ev.noarch",
"product_id": "python38-docutils-0:0.14-12.4.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python38-docutils@0.14-12.4.el8ev?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-runner-0:2.1.3-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch"
},
"product_reference": "ansible-runner-0:2.1.3-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-runner-0:2.1.3-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src"
},
"product_reference": "ansible-runner-0:2.1.3-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache-sshd-1:2.8.0-0.1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch"
},
"product_reference": "apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache-sshd-1:2.8.0-0.1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src"
},
"product_reference": "apache-sshd-1:2.8.0-0.1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch"
},
"product_reference": "apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "engine-db-query-0:1.6.4-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch"
},
"product_reference": "engine-db-query-0:1.6.4-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "engine-db-query-0:1.6.4-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src"
},
"product_reference": "engine-db-query-0:1.6.4-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch"
},
"product_reference": "ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-dependencies-0:4.5.1-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src"
},
"product_reference": "ovirt-dependencies-0:4.5.1-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-0:4.5.0.7-0.9.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src"
},
"product_reference": "ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch"
},
"product_reference": "ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-dwh-0:4.5.2-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src"
},
"product_reference": "ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch"
},
"product_reference": "ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch"
},
"product_reference": "ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch"
},
"product_reference": "ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-metrics-0:1.6.0-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src"
},
"product_reference": "ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch"
},
"product_reference": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src"
},
"product_reference": "ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch"
},
"product_reference": "ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-log-collector-0:4.4.5-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src"
},
"product_reference": "ovirt-log-collector-0:4.4.5-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch"
},
"product_reference": "ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ovirt-web-ui-0:1.8.1-2.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src"
},
"product_reference": "ovirt-web-ui-0:1.8.1-2.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-ansible-runner-0:2.1.3-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch"
},
"product_reference": "python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-docutils-0:0.14-12.4.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch"
},
"product_reference": "python38-docutils-0:0.14-12.4.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch"
},
"product_reference": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src"
},
"product_reference": "rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-0:4.5.0.7-0.9.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
},
"product_reference": "rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch"
},
"product_reference": "rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-branding-rhv-0:4.4.11-1.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src"
},
"product_reference": "rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch"
},
"product_reference": "rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhvm-setup-plugins-0:4.5.0-2.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src"
},
"product_reference": "rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch"
},
"product_reference": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src"
},
"product_reference": "vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"relates_to_product_reference": "8Base-RHV-S-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch as a component of RHEL-8-RHEV-S-4.4 - Red Hat Virtualization Engine 4.4",
"product_id": "8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
},
"product_reference": "vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-S-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3807",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-09-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2007557"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) vulnerability was found in nodejs-ansi-regex. This could possibly cause an application using ansi-regex to use an excessive amount of CPU time when matching crafted ANSI escape codes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw requires crafted invalid ANSI escape codes in order to be exploited and only allows for denial of service of applications on the client side, hence the impact has been rated as Moderate.\n\nIn Red Hat Virtualization and Red Hat Quay some components use a vulnerable version of ansi-regex. However, all frontend code is executed on the client side. As the maximum impact of this vulnerability is denial of service in the client, the vulnerability is rated Moderate for those products.\n\nOpenShift Container Platform 4 (OCP) ships affected version of ansi-regex in the ose-metering-hadoop container, however the metering operator is deprecated since 4.6[1]. This issue is not currently planned to be addressed in future updates and hence hadoop container has been marked as \u0027will not fix\u0027.\n\nAdvanced Cluster Management for Kubernetes (RHACM) ships the affected version of ansi-regex in several containers, however the impact of this vulnerability is deemed low as it would result in an authenticated slowing down their own user interface. \n\n[1] https://docs.openshift.com/container-platform/4.6/metering/metering-about-metering.html",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3807"
},
{
"category": "external",
"summary": "RHBZ#2007557",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2007557"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3807",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3807"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3807",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3807"
},
{
"category": "external",
"summary": "https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994",
"url": "https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994"
}
],
"release_date": "2021-09-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes"
},
{
"cve": "CVE-2021-23425",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-08-18T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1995793"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in nodejs-trim-off-newlines. All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-trim-off-newlines: ReDoS via string processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Directory Server 11 Web UI requires trim-off-newlines as a dependency, but it is not used in the 389-ds cockpit plugin, and not shipped as part of the RPM binary. Thus Red Hat Directory Server 11 is not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-23425"
},
{
"category": "external",
"summary": "RHBZ#1995793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1995793"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-23425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-23425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23425"
},
{
"category": "external",
"summary": "https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850",
"url": "https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850"
}
],
"release_date": "2021-05-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-trim-off-newlines: ReDoS via string processing"
},
{
"cve": "CVE-2021-33502",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2021-05-24T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1964461"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in normalize-url. Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-normalize-url: ReDoS for data URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-33502"
},
{
"category": "external",
"summary": "RHBZ#1964461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1964461"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-33502",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33502"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-33502",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-33502"
},
{
"category": "external",
"summary": "https://snyk.io/vuln/SNYK-JS-NORMALIZEURL-1296539",
"url": "https://snyk.io/vuln/SNYK-JS-NORMALIZEURL-1296539"
}
],
"release_date": "2021-05-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-normalize-url: ReDoS for data URLs"
},
{
"cve": "CVE-2021-41182",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2021-10-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2019144"
}
],
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jquery-ui: XSS in the altField option of the datepicker widget",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41182"
},
{
"category": "external",
"summary": "RHBZ#2019144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019144"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41182",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41182"
}
],
"release_date": "2021-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jquery-ui: XSS in the altField option of the datepicker widget"
},
{
"cve": "CVE-2021-41183",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2021-10-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2019148"
}
],
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jquery-ui: XSS in *Text options of the datepicker widget",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41183"
},
{
"category": "external",
"summary": "RHBZ#2019148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019148"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41183",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41183"
}
],
"release_date": "2021-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jquery-ui: XSS in *Text options of the datepicker widget"
},
{
"cve": "CVE-2021-41184",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2021-10-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2019153"
}
],
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jquery-ui: XSS in the \u0027of\u0027 option of the .position() util",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"known_not_affected": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41184"
},
{
"category": "external",
"summary": "RHBZ#2019153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41184",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41184"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41184",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41184"
}
],
"release_date": "2021-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-26T16:25:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:4711"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ansible-runner-0:2.1.3-1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:apache-sshd-1:2.8.0-0.1.el8ev.src",
"8Base-RHV-S-4.4:apache-sshd-javadoc-1:2.8.0-0.1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.noarch",
"8Base-RHV-S-4.4:engine-db-query-0:1.6.4-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-dependencies-0:4.5.1-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-0:4.5.0.7-0.9.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-backend-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dbscripts-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-0:4.5.2-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-dwh-grafana-integration-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-dwh-setup-0:4.5.2-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-health-check-bundler-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-metrics-0:1.6.0-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-restapi-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-base-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-cinderlib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-imageio-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-ovirt-engine-common-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-setup-plugin-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-tools-backup-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-ui-extensions-0:1.3.3-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-engine-vmconsole-proxy-helper-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-webadmin-portal-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-engine-websocket-proxy-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-log-collector-0:4.4.5-1.el8ev.src",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:ovirt-web-ui-0:1.8.1-2.el8ev.src",
"8Base-RHV-S-4.4:python3-ovirt-engine-lib-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:python38-ansible-runner-0:2.1.3-1.el8ev.noarch",
"8Base-RHV-S-4.4:python38-docutils-0:0.14-12.4.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhv-log-collector-analyzer-0:1.0.13-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-0:4.5.0.7-0.9.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-branding-rhv-0:4.4.11-1.el8ev.src",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.noarch",
"8Base-RHV-S-4.4:rhvm-setup-plugins-0:4.5.0-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.noarch",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-0:1.7.1-2.el8ev.src",
"8Base-RHV-S-4.4:vdsm-jsonrpc-java-javadoc-0:1.7.1-2.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jquery-ui: XSS in the \u0027of\u0027 option of the .position() util"
}
]
}
SUSE-SU-2022:1729-1
Vulnerability from csaf_suse - Published: 2022-05-18 14:55 - Updated: 2022-05-18 14:55Summary
Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud
Severity
Important
Notes
Title of the patch: Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud
Description of the patch: This update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud fixes the following issues:
Security fixes included on the update:
ardana-barbican:
- Update policies to protect container secret access (SOC-11621)
- Update policies to protect secret metadata access (SOC-11620)
openstack-neutron:
- CVE-2021-40085: Fixed arbitrary dnsmasq reconfiguration via extra_dhcp_opts (bsc#1189794).
rubygem-sinatra:
- CVE-2022-29970: Fixed path traversal possible outside of public_dir when serving static files (bsc#1199138).
python-XStatic-jquery-ui:
- CVE-2021-41182: Fixed XSS in the `altField` option of the Datepicker widget (bsc#1192070)
- CVE-2021-41183: Fixed XSS in the `of` option of the `.position()` util (bsc#1192073)
- CVE-2021-41184: Fixed XSS in `*Text` options of the Datepicker widget (bsc#1192075)
python-lxml:
- CVE-2018-19787: Fixed that the lxml.html.clean module does remove javascript in lxml/html/clean.py (bsc#1118088).
- CVE-2020-27783: Fixed mXSS due to the use of improper parser (bsc#1179534).
- CVE-2021-28957: Fixed missing input sanitization for formaction HTML5 attributes that may have led to XSS (bsc#1184177).
- CVE-2021-43818: Fixed HTML Cleaner that allowed crafted and SVG embedded scripts to pass through (bsc#1193752).
openstack-barbican:
- CVE-2022-23451: Disallows authenticated users to add/modify/delete arbitrary metadata on any secret (bsc#1194952).
- CVE-2022-23452: Disallows anyone with an admin role to add their secrets to a different project's containers (bsc#1194954).
grafana:
- CVE-2021-44716: Fixed net/http: limit growth of header canonicalization cache (bsc#1193597).
openstack-keystone:
- CVE-2021-38155: Fixed information disclosure during account locking (bsc#1189390).
Non-security fixes included on the update:
Changes in ardana-barbican:
- Update to version 9.0+git.1644879908.8a641c1:
* Update policies to protect container secret access (SOC-11621)
- Update to version 9.0+git.1643052417.9a3348e:
* update policies to protect secret metadata access (SOC-11620)
Changes in grafana:
- Add CVE-2021-43813.patch (bsc#1193688, CVE-2021-43813)
* directory traversal vulnerability for .md files
- Bump Go to 1.16 (bsc#1193597, CVE-2021-44716)
* Fix Go net/http: limit growth of header canonicalization cache
Changes in openstack-barbican:
- Add patches (0001-Fix-RBAC-and-ACL-access-for-managing-secret-containe.patch
and 0001-Fix-policy-for-adding-a-secret-to-a-container.patch) to fix
the legacy policy rules for adding a secret to a container and removing
a secret from a container. bsc#1194954,CVE-2022-23452
- Add patch (0001-Fix-secret-metadata-access-rules.patch) to fix the
legacy policy rules for accessing secret metadata by checking that
the user making the request is authenticated for the project that
owns the secret. bsc#1194952,CVE-2022-23451
Changes in openstack-cinder:
- Update to version cinder-13.0.10.dev24:
* Correct group:reset\_group\_snapshot\_status policy
Changes in openstack-cinder:
- Update to version cinder-13.0.10.dev24:
* Correct group:reset\_group\_snapshot\_status policy
Changes in openstack-heat-gbp:
- Update to version group-based-policy-automation-14.0.1.dev4:
* Add support for yoga
- Update to version group-based-policy-automation-14.0.1.dev3:
* Python2/3 compatibility fixes
- Update to version group-based-policy-automation-14.0.1.dev2:
* Add support for xena
- Update to version group-based-policy-automation-14.0.1.dev1:
* Remove py27 from gate jobs
14.0.0
Changes in openstack-horizon-plugin-gbp-ui:
- Update to version group-based-policy-ui-14.0.1.dev3:
* Add support for yoga
- Update to version group-based-policy-ui-14.0.1.dev2:
* Python2/3 compatibility changes
- Update to version group-based-policy-ui-14.0.1.dev1:
* Add support for xena
14.0.0
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev18:
* Cleanup stable/rocky legacy jobs
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev18:
* Cleanup stable/rocky legacy jobs
Changes in openstack-keystone:
- Update to version keystone-14.2.1.dev9:
* Delete system role assignments from system\_assignment table
Changes in openstack-keystone:
- Add patch (0001-Hide-AccountLocked-exception-from-end-users.patch) to fix
the problem where AccountLocked exception discloses sensitive information.
bsc#1189390,CVE-2021-38155
- Update to version keystone-14.2.1.dev9:
* Delete system role assignments from system\_assignment table
Changes in openstack-neutron-gbp:
- Update to version group-based-policy-14.0.1.dev33:
* Populate network mtu for erspan
- Update to version group-based-policy-14.0.1.dev32:
* ERSPAN config error when Openstack port is created in a different project than network it belongs to
2014.2.rc1
- Update to version group-based-policy-14.0.1.dev31:
* Python2/3 compatibility fixes
2014.2.0rc1
- Update to version group-based-policy-14.0.1.dev29:
* Fix oslo\_i18n usage
- Update to version group-based-policy-14.0.1.dev27:
* Update mechanism\_driver cache
2014.2.rc1
- Update to version group-based-policy-14.0.1.dev26:
* Add support for xena
- Update to version group-based-policy-14.0.1.dev24:
* update\_floatingip\_status\_while\_deleting\_the\_vm
- Update to version group-based-policy-14.0.1.dev22:
* Updating host id by appending pid in existing host id
2014.2.0rc1
- Update to version group-based-policy-14.0.1.dev20:
* Revert 'Add workaround to get\_subnets'
Changes in python-lxml:
- Fix bsc#1179534 (CVE-2020-27783)
mXSS due to the use of improper parser
Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch
- Fix bsc#1118088 (CVE-2018-19787)
lxml/html/clean.py in the lxml.html.clean module does not remove
javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks
Patch file: 0001-CVE-2018-19787.patch
- Fix bsc#1184177 (CVE-2021-28957)
missing input sanitization for formaction HTML5 attributes may lead to XSS
Patch file: 0001-CVE-2021-28957.patch
- Fix bsc#1193752 (CVE-2021-43818)
Cleaner: Remove SVG image data URLs since they can embed script content.
Reported as GHSL-2021-1037 and GHSL-2021-1038
Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch
Changes in openstack-neutron-doc:
- Update to version neutron-13.0.8.dev206:
* Wait longer before deleting DPDK vhu trunk bridges
- Update to version neutron-13.0.8.dev205:
* Do no use '--strict' for OF deletion in TRANSIENT\_TABLE
- Update to version neutron-13.0.8.dev203:
* Populate self.floating\_ips\_dict using 'ip rule' information
- Update to version neutron-13.0.8.dev201:
* [Functional] Wait for the initial state of ha router before test
* Don't setup bridge controller if it is already set
- Update to version neutron-13.0.8.dev198:
* Remove dhcp\_extra\_opt name after first newline character
- Update to version neutron-13.0.8.dev196:
* [L3] Use processing queue for network update events
* Add extra logs to the network update callback in L3 agent
- Update to version neutron-13.0.8.dev192:
* Remove dhcp\_extra\_opt value after first newline character
- Update to version neutron-13.0.8.dev190:
* Don't use singleton in routes.middleware.RoutesMiddleware
- Update to version neutron-13.0.8.dev189:
* Fix notify listener syntax for SEGMENT\_HOST\_MAPPING
- Update to version neutron-13.0.8.dev188:
* Clean port forwarding cache when router is DOWN
- Update to version neutron-13.0.8.dev186:
* Remove FIP agent's gw port when L3 agent is deleted
- Update to version neutron-13.0.8.dev184:
* Force to close http connection after notify about HA router status
- Update to version neutron-13.0.8.dev183:
* Don't configure dnsmasq entries for 'network' ports
- Update to version neutron-13.0.8.dev181:
* Exclude fallback tunnel devices from netns cleanup
- Update to version neutron-13.0.8.dev180:
* [DVR] Send allowed address pairs info to the L3 agents
* designate: allow PTR zone creation to fail
* Don't try to create default SG when security groups are disabled
- Update to version neutron-13.0.8.dev174:
* Fix update of trunk subports during live migration
- Update to version neutron-13.0.8.dev172:
* [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses
- Update to version neutron-13.0.8.dev170:
* Call install\_ingress\_direct\_goto\_flows() when ovs restarts
- Update to version neutron-13.0.8.dev168:
* Fix multicast traffic with IGMP snooping enabled
- Update to version neutron-13.0.8.dev166:
* Fix OVS conjunctive IP flows cleanup
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev206:
* Wait longer before deleting DPDK vhu trunk bridges
- Update to version neutron-13.0.8.dev205:
* Do no use '--strict' for OF deletion in TRANSIENT\_TABLE
- Update to version neutron-13.0.8.dev203:
* Populate self.floating\_ips\_dict using 'ip rule' information
- Update to version neutron-13.0.8.dev201:
* [Functional] Wait for the initial state of ha router before test
* Don't setup bridge controller if it is already set
- Update to version neutron-13.0.8.dev198:
* Remove dhcp\_extra\_opt name after first newline character
- Update to version neutron-13.0.8.dev196:
* [L3] Use processing queue for network update events
* Add extra logs to the network update callback in L3 agent
- Remove cve-2021-40085-stable-rocky.patch (merged upstream)
- Update to version neutron-13.0.8.dev192:
* Remove dhcp\_extra\_opt value after first newline character
- Update to version neutron-13.0.8.dev190:
* Don't use singleton in routes.middleware.RoutesMiddleware
- Update to version neutron-13.0.8.dev189:
* Fix notify listener syntax for SEGMENT\_HOST\_MAPPING
- Add cve-2021-40085-stable-rocky.patch (bsc#1189794, CVE-2021-40085)
* Remove dhcp_extra_opt value after first newline character
- Update to version neutron-13.0.8.dev188:
* Clean port forwarding cache when router is DOWN
- Update to version neutron-13.0.8.dev186:
* Remove FIP agent's gw port when L3 agent is deleted
- Update to version neutron-13.0.8.dev184:
* Force to close http connection after notify about HA router status
- Update to version neutron-13.0.8.dev183:
* Don't configure dnsmasq entries for 'network' ports
- Update to version neutron-13.0.8.dev181:
* Exclude fallback tunnel devices from netns cleanup
- Update to version neutron-13.0.8.dev180:
* [DVR] Send allowed address pairs info to the L3 agents
* designate: allow PTR zone creation to fail
* Don't try to create default SG when security groups are disabled
- Update to version neutron-13.0.8.dev174:
* Fix update of trunk subports during live migration
- Update to version neutron-13.0.8.dev172:
* [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses
- Update to version neutron-13.0.8.dev170:
* Call install\_ingress\_direct\_goto\_flows() when ovs restarts
- Update to version neutron-13.0.8.dev168:
* Fix multicast traffic with IGMP snooping enabled
- Update to version neutron-13.0.8.dev166:
* Fix OVS conjunctive IP flows cleanup
Changes in python-Pillow:
- Add 030-CVE-2022-22817.patch
* From upstream, backported
* Fixes CVE-2022-22817, bsc#1194521
* test from upstream updated for python2
- Add 028-CVE-2022-22815.patch
* From upstream, backported
* Fixes CVE-2022-22815, bsc#1194552
- Add 029-CVE-2022-22816.patch
* From upstream, backported
* Fixes CVE-2022-22816, bsc#1194551
Changes in python-XStatic-jquery-ui:
- Update to version 1.13.0.1 (bsc#1192070, CVE-2021-41182, bsc#1192073,
CVE-2021-41184, bsc#1192075, CVE-2021-41183)
* Fix XSS in the altField option of the Datepicker widget
(CVE-2021-41182)
* Fix XSS in *Text options of the Datepicker widget
(CVE-2021-41183)
* Fix XSS in the of option of the .position() util
(CVE-2021-41184)
* Drop support for Query 1.7
* Accordion: allow function parameter for selecting header
elements
* Datepicker: add optional onUpdateDatepicker callback
Changes in release-notes-suse-openstack-cloud:
- Update to version 9.20220413:
* Update release notes to indicate support for SES7
- Update to version 9.20220112:
* Add reference to keystone bcrypt issue to known limitations (bsc#1186380)
Changes in rubygem-sinatra:
- Add CVE-2022-29970.patch (bsc#1199138, CVE-2022-29970)
Patchnames: SUSE-2022-1729,SUSE-OpenStack-Cloud-9-2022-1729,SUSE-OpenStack-Cloud-Crowbar-9-2022-1729
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.4 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
4.8 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.9 (Medium)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
99 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
75 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud fixes the following issues:\n\nSecurity fixes included on the update:\n\nardana-barbican:\n\n- Update policies to protect container secret access (SOC-11621)\n- Update policies to protect secret metadata access (SOC-11620)\n\nopenstack-neutron:\n\n- CVE-2021-40085: Fixed arbitrary dnsmasq reconfiguration via extra_dhcp_opts (bsc#1189794).\n\nrubygem-sinatra:\n\n- CVE-2022-29970: Fixed path traversal possible outside of public_dir when serving static files (bsc#1199138).\n\npython-XStatic-jquery-ui:\n\n- CVE-2021-41182: Fixed XSS in the `altField` option of the Datepicker widget (bsc#1192070)\n- CVE-2021-41183: Fixed XSS in the `of` option of the `.position()` util (bsc#1192073)\n- CVE-2021-41184: Fixed XSS in `*Text` options of the Datepicker widget (bsc#1192075)\n\npython-lxml:\n\n- CVE-2018-19787: Fixed that the lxml.html.clean module does remove javascript in lxml/html/clean.py (bsc#1118088).\n- CVE-2020-27783: Fixed mXSS due to the use of improper parser (bsc#1179534).\n- CVE-2021-28957: Fixed missing input sanitization for formaction HTML5 attributes that may have led to XSS (bsc#1184177).\n- CVE-2021-43818: Fixed HTML Cleaner that allowed crafted and SVG embedded scripts to pass through (bsc#1193752).\n\nopenstack-barbican:\n\n- CVE-2022-23451: Disallows authenticated users to add/modify/delete arbitrary metadata on any secret (bsc#1194952).\n- CVE-2022-23452: Disallows anyone with an admin role to add their secrets to a different project\u0027s containers (bsc#1194954).\n\ngrafana:\n\n- CVE-2021-44716: Fixed net/http: limit growth of header canonicalization cache (bsc#1193597).\n\nopenstack-keystone:\n\n- CVE-2021-38155: Fixed information disclosure during account locking (bsc#1189390).\n\nNon-security fixes included on the update:\n\nChanges in ardana-barbican:\n- Update to version 9.0+git.1644879908.8a641c1:\n * Update policies to protect container secret access (SOC-11621)\n\n- Update to version 9.0+git.1643052417.9a3348e:\n * update policies to protect secret metadata access (SOC-11620)\n\nChanges in grafana:\n- Add CVE-2021-43813.patch (bsc#1193688, CVE-2021-43813)\n * directory traversal vulnerability for .md files \n\n- Bump Go to 1.16 (bsc#1193597, CVE-2021-44716)\n * Fix Go net/http: limit growth of header canonicalization cache\n\nChanges in openstack-barbican:\n- Add patches (0001-Fix-RBAC-and-ACL-access-for-managing-secret-containe.patch\n and 0001-Fix-policy-for-adding-a-secret-to-a-container.patch) to fix\n the legacy policy rules for adding a secret to a container and removing\n a secret from a container. bsc#1194954,CVE-2022-23452\n\n- Add patch (0001-Fix-secret-metadata-access-rules.patch) to fix the\n legacy policy rules for accessing secret metadata by checking that\n the user making the request is authenticated for the project that\n owns the secret. bsc#1194952,CVE-2022-23451\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-heat-gbp:\n- Update to version group-based-policy-automation-14.0.1.dev4:\n * Add support for yoga\n\n- Update to version group-based-policy-automation-14.0.1.dev3:\n * Python2/3 compatibility fixes\n\n- Update to version group-based-policy-automation-14.0.1.dev2:\n * Add support for xena\n\n- Update to version group-based-policy-automation-14.0.1.dev1:\n * Remove py27 from gate jobs\n 14.0.0\n\nChanges in openstack-horizon-plugin-gbp-ui:\n- Update to version group-based-policy-ui-14.0.1.dev3:\n * Add support for yoga\n\n- Update to version group-based-policy-ui-14.0.1.dev2:\n * Python2/3 compatibility changes\n\n- Update to version group-based-policy-ui-14.0.1.dev1:\n * Add support for xena\n 14.0.0\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-keystone:\n- Update to version keystone-14.2.1.dev9:\n * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-keystone:\n- Add patch (0001-Hide-AccountLocked-exception-from-end-users.patch) to fix\n the problem where AccountLocked exception discloses sensitive information.\n bsc#1189390,CVE-2021-38155\n\n- Update to version keystone-14.2.1.dev9:\n * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-14.0.1.dev33:\n * Populate network mtu for erspan\n\n- Update to version group-based-policy-14.0.1.dev32:\n * ERSPAN config error when Openstack port is created in a different project than network it belongs to\n 2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev31:\n * Python2/3 compatibility fixes\n 2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev29:\n * Fix oslo\\_i18n usage\n\n- Update to version group-based-policy-14.0.1.dev27:\n * Update mechanism\\_driver cache\n 2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev26:\n * Add support for xena\n\n- Update to version group-based-policy-14.0.1.dev24:\n * update\\_floatingip\\_status\\_while\\_deleting\\_the\\_vm\n\n- Update to version group-based-policy-14.0.1.dev22:\n * Updating host id by appending pid in existing host id\n 2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev20:\n * Revert \u0027Add workaround to get\\_subnets\u0027\n\nChanges in python-lxml:\n- Fix bsc#1179534 (CVE-2020-27783)\n mXSS due to the use of improper parser \n Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch\n- Fix bsc#1118088 (CVE-2018-19787)\n lxml/html/clean.py in the lxml.html.clean module does not remove\n javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks\n Patch file: 0001-CVE-2018-19787.patch\n- Fix bsc#1184177 (CVE-2021-28957)\n missing input sanitization for formaction HTML5 attributes may lead to XSS\n Patch file: 0001-CVE-2021-28957.patch\n- Fix bsc#1193752 (CVE-2021-43818)\n Cleaner: Remove SVG image data URLs since they can embed script content.\n Reported as GHSL-2021-1037 and GHSL-2021-1038 \n Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch\n\nChanges in openstack-neutron-doc:\n- Update to version neutron-13.0.8.dev206:\n * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n * Do no use \u0027--strict\u0027 for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n * Populate self.floating\\_ips\\_dict using \u0027ip rule\u0027 information\n\n- Update to version neutron-13.0.8.dev201:\n * [Functional] Wait for the initial state of ha router before test\n * Don\u0027t setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n * [L3] Use processing queue for network update events\n * Add extra logs to the network update callback in L3 agent\n\n- Update to version neutron-13.0.8.dev192:\n * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n * Don\u0027t use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Update to version neutron-13.0.8.dev188:\n * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n * Remove FIP agent\u0027s gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n * Don\u0027t configure dnsmasq entries for \u0027network\u0027 ports\n\n- Update to version neutron-13.0.8.dev181:\n * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n * [DVR] Send allowed address pairs info to the L3 agents\n * designate: allow PTR zone creation to fail\n * Don\u0027t try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n * Fix OVS conjunctive IP flows cleanup\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev206:\n * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n * Do no use \u0027--strict\u0027 for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n * Populate self.floating\\_ips\\_dict using \u0027ip rule\u0027 information\n\n- Update to version neutron-13.0.8.dev201:\n * [Functional] Wait for the initial state of ha router before test\n * Don\u0027t setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n * [L3] Use processing queue for network update events\n * Add extra logs to the network update callback in L3 agent\n\n- Remove cve-2021-40085-stable-rocky.patch (merged upstream)\n\n- Update to version neutron-13.0.8.dev192:\n * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n * Don\u0027t use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Add cve-2021-40085-stable-rocky.patch (bsc#1189794, CVE-2021-40085) \n * Remove dhcp_extra_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev188:\n * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n * Remove FIP agent\u0027s gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n * Don\u0027t configure dnsmasq entries for \u0027network\u0027 ports\n\n- Update to version neutron-13.0.8.dev181:\n * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n * [DVR] Send allowed address pairs info to the L3 agents\n * designate: allow PTR zone creation to fail\n * Don\u0027t try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n * Fix OVS conjunctive IP flows cleanup\n\nChanges in python-Pillow:\n- Add 030-CVE-2022-22817.patch\n * From upstream, backported\n * Fixes CVE-2022-22817, bsc#1194521 \n * test from upstream updated for python2\n\n- Add 028-CVE-2022-22815.patch\n * From upstream, backported\n * Fixes CVE-2022-22815, bsc#1194552\n- Add 029-CVE-2022-22816.patch\n * From upstream, backported\n * Fixes CVE-2022-22816, bsc#1194551\n\nChanges in python-XStatic-jquery-ui:\n- Update to version 1.13.0.1 (bsc#1192070, CVE-2021-41182, bsc#1192073,\n CVE-2021-41184, bsc#1192075, CVE-2021-41183)\n * Fix XSS in the altField option of the Datepicker widget \n (CVE-2021-41182)\n * Fix XSS in *Text options of the Datepicker widget\n (CVE-2021-41183)\n * Fix XSS in the of option of the .position() util\n (CVE-2021-41184)\n * Drop support for Query 1.7\n * Accordion: allow function parameter for selecting header\n elements\n * Datepicker: add optional onUpdateDatepicker callback\n\nChanges in release-notes-suse-openstack-cloud:\n- Update to version 9.20220413:\n * Update release notes to indicate support for SES7\n- Update to version 9.20220112:\n * Add reference to keystone bcrypt issue to known limitations (bsc#1186380)\n\nChanges in rubygem-sinatra:\n- Add CVE-2022-29970.patch (bsc#1199138, CVE-2022-29970)\n\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-1729,SUSE-OpenStack-Cloud-9-2022-1729,SUSE-OpenStack-Cloud-Crowbar-9-2022-1729",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1729-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:1729-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221729-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:1729-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-May/011075.html"
},
{
"category": "self",
"summary": "SUSE Bug 1118088",
"url": "https://bugzilla.suse.com/1118088"
},
{
"category": "self",
"summary": "SUSE Bug 1179534",
"url": "https://bugzilla.suse.com/1179534"
},
{
"category": "self",
"summary": "SUSE Bug 1184177",
"url": "https://bugzilla.suse.com/1184177"
},
{
"category": "self",
"summary": "SUSE Bug 1186380",
"url": "https://bugzilla.suse.com/1186380"
},
{
"category": "self",
"summary": "SUSE Bug 1189390",
"url": "https://bugzilla.suse.com/1189390"
},
{
"category": "self",
"summary": "SUSE Bug 1189794",
"url": "https://bugzilla.suse.com/1189794"
},
{
"category": "self",
"summary": "SUSE Bug 1192070",
"url": "https://bugzilla.suse.com/1192070"
},
{
"category": "self",
"summary": "SUSE Bug 1192073",
"url": "https://bugzilla.suse.com/1192073"
},
{
"category": "self",
"summary": "SUSE Bug 1192075",
"url": "https://bugzilla.suse.com/1192075"
},
{
"category": "self",
"summary": "SUSE Bug 1193597",
"url": "https://bugzilla.suse.com/1193597"
},
{
"category": "self",
"summary": "SUSE Bug 1193688",
"url": "https://bugzilla.suse.com/1193688"
},
{
"category": "self",
"summary": "SUSE Bug 1193752",
"url": "https://bugzilla.suse.com/1193752"
},
{
"category": "self",
"summary": "SUSE Bug 1194521",
"url": "https://bugzilla.suse.com/1194521"
},
{
"category": "self",
"summary": "SUSE Bug 1194551",
"url": "https://bugzilla.suse.com/1194551"
},
{
"category": "self",
"summary": "SUSE Bug 1194552",
"url": "https://bugzilla.suse.com/1194552"
},
{
"category": "self",
"summary": "SUSE Bug 1194952",
"url": "https://bugzilla.suse.com/1194952"
},
{
"category": "self",
"summary": "SUSE Bug 1194954",
"url": "https://bugzilla.suse.com/1194954"
},
{
"category": "self",
"summary": "SUSE Bug 1199138",
"url": "https://bugzilla.suse.com/1199138"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-19787 page",
"url": "https://www.suse.com/security/cve/CVE-2018-19787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27783 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28957 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38155 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-40085 page",
"url": "https://www.suse.com/security/cve/CVE-2021-40085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41182 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41183 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41184 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43813 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43818 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-44716 page",
"url": "https://www.suse.com/security/cve/CVE-2021-44716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-22815 page",
"url": "https://www.suse.com/security/cve/CVE-2022-22815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-22816 page",
"url": "https://www.suse.com/security/cve/CVE-2022-22816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-22817 page",
"url": "https://www.suse.com/security/cve/CVE-2022-22817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23451 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23451/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23452 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23452/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-29970 page",
"url": "https://www.suse.com/security/cve/CVE-2022-29970/"
}
],
"title": "Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud",
"tracking": {
"current_release_date": "2022-05-18T14:55:52Z",
"generator": {
"date": "2022-05-18T14:55:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:1729-1",
"initial_release_date": "2022-05-18T14:55:52Z",
"revision_history": [
{
"date": "2022-05-18T14:55:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.26.1.aarch64",
"product": {
"name": "grafana-6.7.4-3.26.1.aarch64",
"product_id": "grafana-6.7.4-3.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "python-Pillow-5.2.0-3.17.1.aarch64",
"product": {
"name": "python-Pillow-5.2.0-3.17.1.aarch64",
"product_id": "python-Pillow-5.2.0-3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "python-lxml-4.2.4-3.3.1.aarch64",
"product": {
"name": "python-lxml-4.2.4-3.3.1.aarch64",
"product_id": "python-lxml-4.2.4-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python-lxml-devel-4.2.4-3.3.1.aarch64",
"product": {
"name": "python-lxml-devel-4.2.4-3.3.1.aarch64",
"product_id": "python-lxml-devel-4.2.4-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python3-Pillow-5.2.0-3.17.1.aarch64",
"product": {
"name": "python3-Pillow-5.2.0-3.17.1.aarch64",
"product_id": "python3-Pillow-5.2.0-3.17.1.aarch64"
}
},
{
"category": "product_version",
"name": "python3-lxml-4.2.4-3.3.1.aarch64",
"product": {
"name": "python3-lxml-4.2.4-3.3.1.aarch64",
"product_id": "python3-lxml-4.2.4-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python3-lxml-devel-4.2.4-3.3.1.aarch64",
"product": {
"name": "python3-lxml-devel-4.2.4-3.3.1.aarch64",
"product_id": "python3-lxml-devel-4.2.4-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64",
"product_id": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64",
"product_id": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64",
"product_id": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"product": {
"name": "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"product_id": "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"product_id": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"product_id": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"product": {
"name": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"product_id": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch",
"product": {
"name": "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch",
"product_id": "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"product": {
"name": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"product_id": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch",
"product": {
"name": "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch",
"product_id": "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"product": {
"name": "openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"product_id": "openstack-ironic-11.1.5~dev18-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"product": {
"name": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"product_id": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"product": {
"name": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"product_id": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch",
"product": {
"name": "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch",
"product_id": "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"product": {
"name": "openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"product_id": "openstack-keystone-14.2.1~dev9-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch",
"product": {
"name": "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch",
"product_id": "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"product": {
"name": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"product_id": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch",
"product": {
"name": "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch",
"product_id": "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch",
"product_id": "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"product": {
"name": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"product_id": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python-barbican-7.0.1~dev24-3.14.1.noarch",
"product": {
"name": "python-barbican-7.0.1~dev24-3.14.1.noarch",
"product_id": "python-barbican-7.0.1~dev24-3.14.1.noarch"
}
},
{
"category": "product_version",
"name": "python-cinder-13.0.10~dev24-3.34.2.noarch",
"product": {
"name": "python-cinder-13.0.10~dev24-3.34.2.noarch",
"product_id": "python-cinder-13.0.10~dev24-3.34.2.noarch"
}
},
{
"category": "product_version",
"name": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"product": {
"name": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"product_id": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"product": {
"name": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"product_id": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python-ironic-11.1.5~dev18-3.28.2.noarch",
"product": {
"name": "python-ironic-11.1.5~dev18-3.28.2.noarch",
"product_id": "python-ironic-11.1.5~dev18-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "python-keystone-14.2.1~dev9-3.28.2.noarch",
"product": {
"name": "python-keystone-14.2.1~dev9-3.28.2.noarch",
"product_id": "python-keystone-14.2.1~dev9-3.28.2.noarch"
}
},
{
"category": "product_version",
"name": "python-lxml-doc-4.2.4-3.3.1.noarch",
"product": {
"name": "python-lxml-doc-4.2.4-3.3.1.noarch",
"product_id": "python-lxml-doc-4.2.4-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-13.0.8~dev206-3.40.1.noarch",
"product": {
"name": "python-neutron-13.0.8~dev206-3.40.1.noarch",
"product_id": "python-neutron-13.0.8~dev206-3.40.1.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"product": {
"name": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"product_id": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"product": {
"name": "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"product_id": "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-lxml-doc-4.2.4-3.3.1.noarch",
"product": {
"name": "python3-lxml-doc-4.2.4-3.3.1.noarch",
"product_id": "python3-lxml-doc-4.2.4-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"product": {
"name": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"product_id": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"product": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"product_id": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"product": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"product_id": "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"product": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"product_id": "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"product": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"product_id": "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"product": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"product_id": "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"product": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"product_id": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"product": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"product_id": "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"product": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"product_id": "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"product": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"product_id": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"product": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"product_id": "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"product": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"product_id": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"product": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"product_id": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"product": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"product_id": "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"product": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"product_id": "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"product": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"product_id": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"product": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"product_id": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"product": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"product_id": "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.26.1.ppc64le",
"product": {
"name": "grafana-6.7.4-3.26.1.ppc64le",
"product_id": "grafana-6.7.4-3.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python-Pillow-5.2.0-3.17.1.ppc64le",
"product": {
"name": "python-Pillow-5.2.0-3.17.1.ppc64le",
"product_id": "python-Pillow-5.2.0-3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python-lxml-4.2.4-3.3.1.ppc64le",
"product": {
"name": "python-lxml-4.2.4-3.3.1.ppc64le",
"product_id": "python-lxml-4.2.4-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python-lxml-devel-4.2.4-3.3.1.ppc64le",
"product": {
"name": "python-lxml-devel-4.2.4-3.3.1.ppc64le",
"product_id": "python-lxml-devel-4.2.4-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-Pillow-5.2.0-3.17.1.ppc64le",
"product": {
"name": "python3-Pillow-5.2.0-3.17.1.ppc64le",
"product_id": "python3-Pillow-5.2.0-3.17.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-lxml-4.2.4-3.3.1.ppc64le",
"product": {
"name": "python3-lxml-4.2.4-3.3.1.ppc64le",
"product_id": "python3-lxml-4.2.4-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-lxml-devel-4.2.4-3.3.1.ppc64le",
"product": {
"name": "python3-lxml-devel-4.2.4-3.3.1.ppc64le",
"product_id": "python3-lxml-devel-4.2.4-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.26.1.s390x",
"product": {
"name": "grafana-6.7.4-3.26.1.s390x",
"product_id": "grafana-6.7.4-3.26.1.s390x"
}
},
{
"category": "product_version",
"name": "python-Pillow-5.2.0-3.17.1.s390x",
"product": {
"name": "python-Pillow-5.2.0-3.17.1.s390x",
"product_id": "python-Pillow-5.2.0-3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "python-lxml-4.2.4-3.3.1.s390x",
"product": {
"name": "python-lxml-4.2.4-3.3.1.s390x",
"product_id": "python-lxml-4.2.4-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "python-lxml-devel-4.2.4-3.3.1.s390x",
"product": {
"name": "python-lxml-devel-4.2.4-3.3.1.s390x",
"product_id": "python-lxml-devel-4.2.4-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "python3-Pillow-5.2.0-3.17.1.s390x",
"product": {
"name": "python3-Pillow-5.2.0-3.17.1.s390x",
"product_id": "python3-Pillow-5.2.0-3.17.1.s390x"
}
},
{
"category": "product_version",
"name": "python3-lxml-4.2.4-3.3.1.s390x",
"product": {
"name": "python3-lxml-4.2.4-3.3.1.s390x",
"product_id": "python3-lxml-4.2.4-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "python3-lxml-devel-4.2.4-3.3.1.s390x",
"product": {
"name": "python3-lxml-devel-4.2.4-3.3.1.s390x",
"product_id": "python3-lxml-devel-4.2.4-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x",
"product_id": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x",
"product_id": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x",
"product_id": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.26.1.x86_64",
"product": {
"name": "grafana-6.7.4-3.26.1.x86_64",
"product_id": "grafana-6.7.4-3.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "python-Pillow-5.2.0-3.17.1.x86_64",
"product": {
"name": "python-Pillow-5.2.0-3.17.1.x86_64",
"product_id": "python-Pillow-5.2.0-3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "python-lxml-4.2.4-3.3.1.x86_64",
"product": {
"name": "python-lxml-4.2.4-3.3.1.x86_64",
"product_id": "python-lxml-4.2.4-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python-lxml-devel-4.2.4-3.3.1.x86_64",
"product": {
"name": "python-lxml-devel-4.2.4-3.3.1.x86_64",
"product_id": "python-lxml-devel-4.2.4-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python3-Pillow-5.2.0-3.17.1.x86_64",
"product": {
"name": "python3-Pillow-5.2.0-3.17.1.x86_64",
"product_id": "python3-Pillow-5.2.0-3.17.1.x86_64"
}
},
{
"category": "product_version",
"name": "python3-lxml-4.2.4-3.3.1.x86_64",
"product": {
"name": "python3-lxml-4.2.4-3.3.1.x86_64",
"product_id": "python3-lxml-4.2.4-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python3-lxml-devel-4.2.4-3.3.1.x86_64",
"product": {
"name": "python3-lxml-devel-4.2.4-3.3.1.x86_64",
"product_id": "python3-lxml-devel-4.2.4-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64",
"product_id": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64",
"product_id": "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64",
"product_id": "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch"
},
"product_reference": "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.26.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64"
},
"product_reference": "grafana-6.7.4-3.26.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch"
},
"product_reference": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
},
"product_reference": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch"
},
"product_reference": "openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
},
"product_reference": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Pillow-5.2.0-3.17.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64"
},
"product_reference": "python-Pillow-5.2.0-3.17.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch"
},
"product_reference": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "python-barbican-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "python-cinder-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch"
},
"product_reference": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
},
"product_reference": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "python-ironic-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch"
},
"product_reference": "python-keystone-14.2.1~dev9-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-lxml-4.2.4-3.3.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64"
},
"product_reference": "python-lxml-4.2.4-3.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "python-neutron-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
},
"product_reference": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch"
},
"product_reference": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch"
},
"product_reference": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch"
},
"product_reference": "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch"
},
"product_reference": "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch"
},
"product_reference": "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch"
},
"product_reference": "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch"
},
"product_reference": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch"
},
"product_reference": "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch"
},
"product_reference": "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch"
},
"product_reference": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch"
},
"product_reference": "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch"
},
"product_reference": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch"
},
"product_reference": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch"
},
"product_reference": "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch"
},
"product_reference": "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch"
},
"product_reference": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch"
},
"product_reference": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch"
},
"product_reference": "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.26.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64"
},
"product_reference": "grafana-6.7.4-3.26.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch"
},
"product_reference": "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
},
"product_reference": "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch"
},
"product_reference": "openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
},
"product_reference": "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Pillow-5.2.0-3.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64"
},
"product_reference": "python-Pillow-5.2.0-3.17.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch"
},
"product_reference": "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch"
},
"product_reference": "python-barbican-7.0.1~dev24-3.14.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch"
},
"product_reference": "python-cinder-13.0.10~dev24-3.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch"
},
"product_reference": "python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch"
},
"product_reference": "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch"
},
"product_reference": "python-ironic-11.1.5~dev18-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch"
},
"product_reference": "python-keystone-14.2.1~dev9-3.28.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-lxml-4.2.4-3.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64"
},
"product_reference": "python-lxml-4.2.4-3.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch"
},
"product_reference": "python-neutron-13.0.8~dev206-3.40.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch"
},
"product_reference": "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch"
},
"product_reference": "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
},
"product_reference": "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-19787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-19787"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by \"j a v a s c r i p t:\" in Internet Explorer. This is a similar issue to CVE-2014-3146.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-19787",
"url": "https://www.suse.com/security/cve/CVE-2018-19787"
},
{
"category": "external",
"summary": "SUSE Bug 1118088 for CVE-2018-19787",
"url": "https://bugzilla.suse.com/1118088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2018-19787"
},
{
"cve": "CVE-2020-27783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27783"
}
],
"notes": [
{
"category": "general",
"text": "A XSS vulnerability was discovered in python-lxml\u0027s clean module. The module\u0027s parser didn\u0027t properly imitate browsers, which caused different behaviors between the sanitizer and the user\u0027s page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27783",
"url": "https://www.suse.com/security/cve/CVE-2020-27783"
},
{
"category": "external",
"summary": "SUSE Bug 1179534 for CVE-2020-27783",
"url": "https://bugzilla.suse.com/1179534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2020-27783"
},
{
"cve": "CVE-2021-28957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28957"
}
],
"notes": [
{
"category": "general",
"text": "An XSS vulnerability was discovered in python-lxml\u0027s clean module versions before 4.6.3. When disabling the safe_attrs_only and forms arguments, the Cleaner class does not remove the formaction attribute allowing for JS to bypass the sanitizer. A remote attacker could exploit this flaw to run arbitrary JS code on users who interact with incorrectly sanitized HTML. This issue is patched in lxml 4.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28957",
"url": "https://www.suse.com/security/cve/CVE-2021-28957"
},
{
"category": "external",
"summary": "SUSE Bug 1184177 for CVE-2021-28957",
"url": "https://bugzilla.suse.com/1184177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-28957"
},
{
"cve": "CVE-2021-38155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38155"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking (related to PCI DSS features). By guessing the name of an account and failing to authenticate multiple times, any unauthenticated actor could both confirm the account exists and obtain that account\u0027s corresponding UUID, which might be leveraged for other unrelated attacks. All deployments enabling security_compliance.lockout_failure_attempts are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38155",
"url": "https://www.suse.com/security/cve/CVE-2021-38155"
},
{
"category": "external",
"summary": "SUSE Bug 1189390 for CVE-2021-38155",
"url": "https://bugzilla.suse.com/1189390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "important"
}
],
"title": "CVE-2021-38155"
},
{
"cve": "CVE-2021-40085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-40085"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attackers can reconfigure dnsmasq via a crafted extra_dhcp_opts value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-40085",
"url": "https://www.suse.com/security/cve/CVE-2021-40085"
},
{
"category": "external",
"summary": "SUSE Bug 1189794 for CVE-2021-40085",
"url": "https://bugzilla.suse.com/1189794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "important"
}
],
"title": "CVE-2021-40085"
},
{
"cve": "CVE-2021-41182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41182"
}
],
"notes": [
{
"category": "general",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41182",
"url": "https://www.suse.com/security/cve/CVE-2021-41182"
},
{
"category": "external",
"summary": "SUSE Bug 1192070 for CVE-2021-41182",
"url": "https://bugzilla.suse.com/1192070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-41182"
},
{
"cve": "CVE-2021-41183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41183"
}
],
"notes": [
{
"category": "general",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41183",
"url": "https://www.suse.com/security/cve/CVE-2021-41183"
},
{
"category": "external",
"summary": "SUSE Bug 1192075 for CVE-2021-41183",
"url": "https://bugzilla.suse.com/1192075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-41183"
},
{
"cve": "CVE-2021-41184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41184"
}
],
"notes": [
{
"category": "general",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41184",
"url": "https://www.suse.com/security/cve/CVE-2021-41184"
},
{
"category": "external",
"summary": "SUSE Bug 1192073 for CVE-2021-41184",
"url": "https://bugzilla.suse.com/1192073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2021-43813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43813"
}
],
"notes": [
{
"category": "general",
"text": "Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files with the extension .md to authenticated users only. Grafana Cloud instances have not been affected by the vulnerability. Users should upgrade to patched versions 8.3.2 or 7.5.12. For users who cannot upgrade, running a reverse proxy in front of Grafana that normalizes the PATH of the request will mitigate the vulnerability. The proxy will have to also be able to handle url encoded paths. Alternatively, for fully lowercase or fully uppercase .md files, users can block /api/plugins/.*/markdown/.* without losing any functionality beyond inlined plugin help text.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43813",
"url": "https://www.suse.com/security/cve/CVE-2021-43813"
},
{
"category": "external",
"summary": "SUSE Bug 1193686 for CVE-2021-43813",
"url": "https://bugzilla.suse.com/1193686"
},
{
"category": "external",
"summary": "SUSE Bug 1193688 for CVE-2021-43813",
"url": "https://bugzilla.suse.com/1193688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-43813"
},
{
"cve": "CVE-2021-43818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43818"
}
],
"notes": [
{
"category": "general",
"text": "lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant context should upgrade to lxml 4.6.5 to receive a patch. There are no known workarounds available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43818",
"url": "https://www.suse.com/security/cve/CVE-2021-43818"
},
{
"category": "external",
"summary": "SUSE Bug 1193752 for CVE-2021-43818",
"url": "https://bugzilla.suse.com/1193752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2021-43818"
},
{
"cve": "CVE-2021-44716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-44716"
}
],
"notes": [
{
"category": "general",
"text": "net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-44716",
"url": "https://www.suse.com/security/cve/CVE-2021-44716"
},
{
"category": "external",
"summary": "SUSE Bug 1193597 for CVE-2021-44716",
"url": "https://bugzilla.suse.com/1193597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "important"
}
],
"title": "CVE-2021-44716"
},
{
"cve": "CVE-2022-22815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-22815"
}
],
"notes": [
{
"category": "general",
"text": "path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-22815",
"url": "https://www.suse.com/security/cve/CVE-2022-22815"
},
{
"category": "external",
"summary": "SUSE Bug 1194552 for CVE-2022-22815",
"url": "https://bugzilla.suse.com/1194552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "low"
}
],
"title": "CVE-2022-22815"
},
{
"cve": "CVE-2022-22816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-22816"
}
],
"notes": [
{
"category": "general",
"text": "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-22816",
"url": "https://www.suse.com/security/cve/CVE-2022-22816"
},
{
"category": "external",
"summary": "SUSE Bug 1194551 for CVE-2022-22816",
"url": "https://bugzilla.suse.com/1194551"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "low"
}
],
"title": "CVE-2022-22816"
},
{
"cve": "CVE-2022-22817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-22817"
}
],
"notes": [
{
"category": "general",
"text": "PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-22817",
"url": "https://www.suse.com/security/cve/CVE-2022-22817"
},
{
"category": "external",
"summary": "SUSE Bug 1194521 for CVE-2022-22817",
"url": "https://bugzilla.suse.com/1194521"
},
{
"category": "external",
"summary": "SUSE Bug 1219048 for CVE-2022-22817",
"url": "https://bugzilla.suse.com/1219048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2022-22817"
},
{
"cve": "CVE-2022-23451",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23451"
}
],
"notes": [
{
"category": "general",
"text": "An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete protected data, causing a denial of service by consuming protected resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23451",
"url": "https://www.suse.com/security/cve/CVE-2022-23451"
},
{
"category": "external",
"summary": "SUSE Bug 1194952 for CVE-2022-23451",
"url": "https://bugzilla.suse.com/1194952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2022-23451"
},
{
"cve": "CVE-2022-23452",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23452"
}
],
"notes": [
{
"category": "general",
"text": "An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to consume protected resources and cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23452",
"url": "https://www.suse.com/security/cve/CVE-2022-23452"
},
{
"category": "external",
"summary": "SUSE Bug 1194954 for CVE-2022-23452",
"url": "https://bugzilla.suse.com/1194954"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "moderate"
}
],
"title": "CVE-2022-23452"
},
{
"cve": "CVE-2022-29970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-29970"
}
],
"notes": [
{
"category": "general",
"text": "Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-29970",
"url": "https://www.suse.com/security/cve/CVE-2022-29970"
},
{
"category": "external",
"summary": "SUSE Bug 1199138 for CVE-2022-29970",
"url": "https://bugzilla.suse.com/1199138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-05-18T14:55:52Z",
"details": "important"
}
],
"title": "CVE-2022-29970"
}
]
}
VDE-2022-019
Vulnerability from csaf_endresshauserag - Published: 2022-06-02 15:11 - Updated: 2022-06-02 15:11Summary
Endress+Hauser: Multiple products utilizing vulnerable WIBU-SYSTEMS CodeMeter components
Notes
Summary: For detailed information please refer to WIBU SYSTEMS original Advisories at https://wibu.com/support/security-advisories.html.
Mitigation: All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Remediation: Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over a connection. A malicious server can use this in rare unfortunate circumstances to potentially reach remote code execution in the client. When libcurl at run-time sets up support for TLS 1.3 session tickets on a connection using OpenSSL, it stores pointers to the transfer in-memory object for later retrieval when a session ticket arrives. If the connection is used by multiple transfers (like with a reused HTTP/1.1 connection or multiplexed HTTP/2 connection) that first transfer object might be freed before the new session is established on that connection and then the function will access a memory buffer that might be freed. When using that memory, libcurl might even call a function pointer in the object, making it possible for a remote code execution if the server could somehow manage to get crafted memory content into the correct place in memory.
8.1 (High)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.
6.1 (Medium)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.
6.1 (Medium)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.
7.5 (High)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
6.1 (Medium)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.
9.1 (Critical)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.
7.1 (High)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.
7.5 (High)
Mitigation
All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version >=7.40b.
The version is available at https://www.wibu.com/support.
For the Operating System WIN 7 it's recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version >= 7.40b.
Vendor Fix
Update the software application of the affected products:
| # | Product Name | Fixed Version |
|----------------------------------|-----------------------------------------------|-------------------|
| SCE30B | | |
| SCE31B | SupplyCare Enterprise | >= 3.5.1 |
| SCE32B | | |
| SFE100 | DeviceCare | >= 1.07.07 |
| SFE500 | FieldCare | >= 2.17.00 |
| SMT50 | | |
| SMT70 | Field Xpert | >= 1.06.00 |
| SMT77 | | |
| MS20 | | |
| MS21 | Field Data Manager | >= 1.6.3 |
| Freeware for the | | |
| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | > V1.3.7926 |
| via Endress+Hauser Download Portal | | |
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.07.07
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.07.07 | |
|
FieldCare 2.17.00
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.17.00 | |
|
Field Data Manager 1.6.3
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.6.3 | |
|
Field Xpert 1.06.00
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.06.00 | |
|
SupplyCare Enterprise 3.5.1
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.5.1 |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
DeviceCare 1.02.xx<=1.07.06
Endress+Hauser / Software / DeviceCare
|
SFE100
|
1.02.xx<=1.07.06 | |
|
FieldCare 2.15.xx<=2.16.xx
Endress+Hauser / Software / FieldCare
|
SFE500
|
2.15.xx<=2.16.xx | |
|
Field Data Manager 1.4.0<=1.6.2
Endress+Hauser / Software / Field Data Manager
|
MS21
|
1.4.0<=1.6.2 | |
|
Field Xpert 1.03.xx<=1.05.xx
Endress+Hauser / Software / Field Xpert
|
SMT50
|
1.03.xx<=1.05.xx | |
|
Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926
Endress+Hauser / Software / Proline Promag W 800 OPC/UA Connectivity Server
|
V1.3.7926 | ||
|
SupplyCare Enterprise 3.0.x<=3.4.x
Endress+Hauser / Software / SupplyCare Enterprise
|
SCE31B
|
3.0.x<=3.4.x |
References
4 references
| URL | Category |
|---|---|
| https://certvde.com/en/advisories/VDE-2022-019/ | self |
| https://endress-hauser.csaf-tp.certvde.com/.well-… | self |
| https://www.endress.com | external |
| https://certvde.com/en/advisories/vendor/endress-… | external |
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "For detailed information please refer to WIBU SYSTEMS original Advisories at https://wibu.com/support/security-advisories.html.",
"title": "Summary"
},
{
"category": "description",
"text": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"title": "Mitigation"
},
{
"category": "description",
"text": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@endress.com",
"name": "Endress+Hauser AG",
"namespace": "https://www.endress.com"
},
"references": [
{
"category": "self",
"summary": "VDE-2022-019: Endress+Hauser: Multiple products utilizing vulnerable WIBU-SYSTEMS CodeMeter components - HTML",
"url": "https://certvde.com/en/advisories/VDE-2022-019/"
},
{
"category": "self",
"summary": "VDE-2022-019: Endress+Hauser: Multiple products utilizing vulnerable WIBU-SYSTEMS CodeMeter components - CSAF",
"url": "https://endress-hauser.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2022-019.json"
},
{
"category": "external",
"summary": "Vendor PSIRT",
"url": "https://www.endress.com"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for Endress+Hauser AG",
"url": "https://certvde.com/en/advisories/vendor/endress-hauser/"
}
],
"title": "Endress+Hauser: Multiple products utilizing vulnerable WIBU-SYSTEMS CodeMeter components",
"tracking": {
"aliases": [
"VDE-2022-019"
],
"current_release_date": "2022-06-02T15:11:00.000Z",
"generator": {
"date": "2025-06-23T09:40:56.803Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.28"
}
},
"id": "VDE-2022-019",
"initial_release_date": "2022-06-02T15:11:00.000Z",
"revision_history": [
{
"date": "2022-06-02T15:11:00.000Z",
"number": "1.0.0",
"summary": "Initial revision."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "1.02.xx\u003c=1.07.06",
"product": {
"name": "DeviceCare 1.02.xx\u003c=1.07.06",
"product_id": "CSAFPID-51001",
"product_identification_helper": {
"model_numbers": [
"SFE100"
]
}
}
},
{
"category": "product_version",
"name": "1.07.07",
"product": {
"name": "DeviceCare 1.07.07",
"product_id": "CSAFPID-52001",
"product_identification_helper": {
"model_numbers": [
"SFE100"
]
}
}
}
],
"category": "product_name",
"name": "DeviceCare"
},
{
"branches": [
{
"category": "product_version_range",
"name": "2.15.xx\u003c=2.16.xx",
"product": {
"name": "FieldCare 2.15.xx\u003c=2.16.xx",
"product_id": "CSAFPID-51002",
"product_identification_helper": {
"model_numbers": [
"SFE500"
]
}
}
},
{
"category": "product_version",
"name": "2.17.00",
"product": {
"name": "FieldCare 2.17.00",
"product_id": "CSAFPID-52002",
"product_identification_helper": {
"model_numbers": [
"SFE500"
]
}
}
}
],
"category": "product_name",
"name": "FieldCare"
},
{
"branches": [
{
"category": "product_version_range",
"name": "1.4.0\u003c=1.6.2",
"product": {
"name": "Field Data Manager 1.4.0\u003c=1.6.2",
"product_id": "CSAFPID-51003",
"product_identification_helper": {
"model_numbers": [
"MS21"
]
}
}
},
{
"category": "product_version",
"name": "1.6.3",
"product": {
"name": "Field Data Manager 1.6.3",
"product_id": "CSAFPID-52003",
"product_identification_helper": {
"model_numbers": [
"MS21"
]
}
}
}
],
"category": "product_name",
"name": "Field Data Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "1.03.xx\u003c=1.05.xx",
"product": {
"name": "Field Xpert 1.03.xx\u003c=1.05.xx",
"product_id": "CSAFPID-51004",
"product_identification_helper": {
"model_numbers": [
"SMT50"
]
}
}
},
{
"category": "product_version",
"name": "1.06.00",
"product": {
"name": "Field Xpert 1.06.00",
"product_id": "CSAFPID-52004",
"product_identification_helper": {
"model_numbers": [
"SMT50"
]
}
}
}
],
"category": "product_name",
"name": "Field Xpert"
},
{
"branches": [
{
"category": "product_version",
"name": "V1.3.7926",
"product": {
"name": "Proline Promag W 800 OPC/UA Connectivity Server V1.3.7926",
"product_id": "CSAFPID-51005"
}
}
],
"category": "product_name",
"name": "Proline Promag W 800 OPC/UA Connectivity Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "3.0.x\u003c=3.4.x",
"product": {
"name": "SupplyCare Enterprise 3.0.x\u003c=3.4.x",
"product_id": "CSAFPID-51006",
"product_identification_helper": {
"model_numbers": [
"SCE31B"
]
}
}
},
{
"category": "product_version",
"name": "3.5.1",
"product": {
"name": "SupplyCare Enterprise 3.5.1",
"product_id": "CSAFPID-52005",
"product_identification_helper": {
"model_numbers": [
"SCE31B"
]
}
}
}
],
"category": "product_name",
"name": "SupplyCare Enterprise"
}
],
"category": "product_family",
"name": "Software"
}
],
"category": "vendor",
"name": "Endress+Hauser"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
],
"summary": "Affected products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"summary": "Fixed products."
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-22901",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over a connection. A malicious server can use this in rare unfortunate circumstances to potentially reach remote code execution in the client. When libcurl at run-time sets up support for TLS 1.3 session tickets on a connection using OpenSSL, it stores pointers to the transfer in-memory object for later retrieval when a session ticket arrives. If the connection is used by multiple transfers (like with a reused HTTP/1.1 connection or multiplexed HTTP/2 connection) that first transfer object might be freed before the new session is established on that connection and then the function will access a memory buffer that might be freed. When using that memory, libcurl might even call a function pointer in the object, making it possible for a remote code execution if the server could somehow manage to get crafted memory content into the correct place in memory.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.1,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.1,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-22901"
},
{
"cve": "CVE-2021-41183",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.1,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"temporalScore": 6.1,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-41183"
},
{
"cve": "CVE-2021-41182",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.1,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"temporalScore": 6.1,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-41182"
},
{
"cve": "CVE-2020-8286",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "description",
"text": "curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2020-8286"
},
{
"cve": "CVE-2021-41184",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "description",
"text": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.1,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"temporalScore": 6.1,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2021-20093",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions \u003c 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.1,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.1,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-20093"
},
{
"cve": "CVE-2021-41057",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"notes": [
{
"category": "description",
"text": "In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.1,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.1,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-41057"
},
{
"cve": "CVE-2021-20094",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists in Wibu-Systems CodeMeter versions \u003c 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001",
"CSAFPID-52002",
"CSAFPID-52003",
"CSAFPID-52004",
"CSAFPID-52005"
],
"known_affected": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
},
"remediations": [
{
"category": "mitigation",
"details": "All vulnerabilities have already been fixed in several CodeMeter versions. Endress+Hauser recommends to use CodeMeter version \u003e=7.40b.\nThe version is available at https://www.wibu.com/support.\nFor the Operating System WIN 7 it\u0027s recommended to update the operating system, use/re-install the Endress+Hauser Software Application supporting the newer operating system and update Code Meter to version \u003e= 7.40b.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update the software application of the affected products:\n\n| # | Product Name | Fixed Version |\n|----------------------------------|-----------------------------------------------|-------------------|\n| SCE30B | | |\n| SCE31B | SupplyCare Enterprise | \u003e= 3.5.1 |\n| SCE32B | | |\n| SFE100 | DeviceCare | \u003e= 1.07.07 |\n| SFE500 | FieldCare | \u003e= 2.17.00 |\n| SMT50 | | |\n| SMT70 | Field Xpert | \u003e= 1.06.00 |\n| SMT77 | | |\n| MS20 | | |\n| MS21 | Field Data Manager | \u003e= 1.6.3 |\n| Freeware for the | | |\n| Proline Promag W 800/5W8C | Proline Promag W 800 OPC/UA Connectivity Server | \u003e V1.3.7926 |\n| via Endress+Hauser Download Portal | | |",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001",
"CSAFPID-51002",
"CSAFPID-51003",
"CSAFPID-51004",
"CSAFPID-51005",
"CSAFPID-51006"
]
}
],
"title": "CVE-2021-20094"
}
]
}
WID-SEC-W-2022-0169
Vulnerability from csaf_certbund - Published: 2022-04-19 22:00 - Updated: 2024-05-28 22:00Summary
Oracle MySQL: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: MySQL ist ein Open Source Datenbankserver von Oracle.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle MySQL ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Linux
- MacOS X
- NetApp Appliance
- UNIX
- Windows
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Juniper Junos Space <22.2R1
Juniper / Junos Space
|
<22.2R1 | ||
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift
Red Hat
|
cpe:/a:redhat:openshift:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
NetApp ActiveIQ Unified Manager
NetApp
|
cpe:/a:netapp:active_iq_unified_manager:-
|
— |
Last affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle MySQL <=5.7.37
Oracle / MySQL
|
<=5.7.37 | ||
|
Oracle MySQL <=7.4.35
Oracle / MySQL
|
<=7.4.35 | ||
|
Oracle MySQL <=7.5.25
Oracle / MySQL
|
<=7.5.25 | ||
|
Oracle MySQL <=7.6.21
Oracle / MySQL
|
<=7.6.21 | ||
|
Oracle MySQL <=8.0.29
Oracle / MySQL
|
<=8.0.29 | ||
|
Oracle MySQL <=8.0.28
Oracle / MySQL
|
<=8.0.28 |
References
30 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "MySQL ist ein Open Source Datenbankserver von Oracle.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle MySQL ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- NetApp Appliance\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0169 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0169.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0169 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0169"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5490-1 vom 2022-06-21",
"url": "https://ubuntu.com/security/notices/USN-5490-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:2003-1 vom 2022-06-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011247.html"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update April 2022 - Appendix Oracle MySQL vom 2022-04-19",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html#AppendixMSQL"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20220429-0005 vom 2022-04-29",
"url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5400-1 vom 2022-05-03",
"url": "https://ubuntu.com/security/notices/USN-5400-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5400-2 vom 2022-05-04",
"url": "https://ubuntu.com/security/notices/USN-5400-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5400-3 vom 2022-05-05",
"url": "https://ubuntu.com/security/notices/USN-5400-3"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-098 vom 2022-07-21",
"url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-098.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:6306 vom 2022-09-01",
"url": "https://access.redhat.com/errata/RHSA-2022:6306"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:6518 vom 2022-09-14",
"url": "https://access.redhat.com/errata/RHSA-2022:6518"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:6590 vom 2022-09-21",
"url": "https://access.redhat.com/errata/RHSA-2022:6590"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-6590 vom 2022-09-22",
"url": "https://linux.oracle.com/errata/ELSA-2022-6590.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:1040-3 vom 2022-10-06",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-October/012505.html"
},
{
"category": "external",
"summary": "Juniper Security Bulletin",
"url": "https://supportportal.juniper.net/s/article/2022-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-22-2R1-release"
},
{
"category": "external",
"summary": "Oracle Linux Bulletin-October 2022 vom 2022-10-18",
"url": "https://www.oracle.com/security-alerts/linuxbulletinoct2022.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:7119 vom 2022-10-25",
"url": "https://access.redhat.com/errata/RHSA-2022:7119"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-7119 vom 2022-10-27",
"url": "https://linux.oracle.com/errata/ELSA-2022-7119.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2022-165 vom 2022-11-04",
"url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-165.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:7464 vom 2022-11-08",
"url": "https://access.redhat.com/errata/RHSA-2022:7464"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:7970 vom 2022-11-15",
"url": "https://access.redhat.com/errata/RHSA-2022:7970"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-7970 vom 2022-11-22",
"url": "https://linux.oracle.com/errata/ELSA-2022-7970.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:8860 vom 2022-12-08",
"url": "https://access.redhat.com/errata/RHSA-2022:8860"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:8847 vom 2022-12-08",
"url": "https://access.redhat.com/errata/RHSA-2022:8847"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:8893 vom 2022-12-15",
"url": "https://access.redhat.com/errata/RHSA-2022:8893"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-1931 vom 2023-02-06",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1931.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2023-1676 vom 2023-02-06",
"url": "https://alas.aws.amazon.com/ALAS-2023-1676.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2023-1948 vom 2023-02-22",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1948.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3433 vom 2024-05-28",
"url": "https://access.redhat.com/errata/RHSA-2024:3433"
}
],
"source_lang": "en-US",
"title": "Oracle MySQL: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-05-28T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:27:04.345+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2022-0169",
"initial_release_date": "2022-04-19T22:00:00.000+00:00",
"revision_history": [
{
"date": "2022-04-19T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-05-01T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von NetApp aufgenommen"
},
{
"date": "2022-05-03T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2022-05-04T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2022-05-05T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2022-06-07T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-06-21T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2022-07-20T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2022-09-01T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-09-14T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-09-20T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-09-21T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2022-10-06T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-10-12T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2022-10-18T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2022-10-25T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-10-26T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2022-11-06T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2022-11-08T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-11-15T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-11-21T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2022-12-07T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-12-15T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2023-02-06T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-02-22T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-05-28T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "26"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c22.2R1",
"product": {
"name": "Juniper Junos Space \u003c22.2R1",
"product_id": "T003343"
}
}
],
"category": "product_name",
"name": "Junos Space"
}
],
"category": "vendor",
"name": "Juniper"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp ActiveIQ Unified Manager",
"product": {
"name": "NetApp ActiveIQ Unified Manager",
"product_id": "T016960",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:active_iq_unified_manager:-"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=8.0.29",
"product": {
"name": "Oracle MySQL \u003c=8.0.29",
"product_id": "T022871"
}
},
{
"category": "product_version_range",
"name": "\u003c=8.0.28",
"product": {
"name": "Oracle MySQL \u003c=8.0.28",
"product_id": "T022872"
}
},
{
"category": "product_version_range",
"name": "\u003c=5.7.37",
"product": {
"name": "Oracle MySQL \u003c=5.7.37",
"product_id": "T022873"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.4.35",
"product": {
"name": "Oracle MySQL \u003c=7.4.35",
"product_id": "T022874"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.5.25",
"product": {
"name": "Oracle MySQL \u003c=7.5.25",
"product_id": "T022875"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.6.21",
"product": {
"name": "Oracle MySQL \u003c=7.6.21",
"product_id": "T022876"
}
}
],
"category": "product_name",
"name": "MySQL"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift",
"product": {
"name": "Red Hat OpenShift",
"product_id": "367115",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-22570",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2021-22570"
},
{
"cve": "CVE-2021-41184",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2021-42340",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2021-42340"
},
{
"cve": "CVE-2021-44832",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2021-44832"
},
{
"cve": "CVE-2022-0778",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2022-21412",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21412"
},
{
"cve": "CVE-2022-21413",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21413"
},
{
"cve": "CVE-2022-21414",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21414"
},
{
"cve": "CVE-2022-21415",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21415"
},
{
"cve": "CVE-2022-21417",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21417"
},
{
"cve": "CVE-2022-21418",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21418"
},
{
"cve": "CVE-2022-21423",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21423"
},
{
"cve": "CVE-2022-21425",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21425"
},
{
"cve": "CVE-2022-21427",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21427"
},
{
"cve": "CVE-2022-21435",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21435"
},
{
"cve": "CVE-2022-21436",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21436"
},
{
"cve": "CVE-2022-21437",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21437"
},
{
"cve": "CVE-2022-21438",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21438"
},
{
"cve": "CVE-2022-21440",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21440"
},
{
"cve": "CVE-2022-21444",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21444"
},
{
"cve": "CVE-2022-21451",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21451"
},
{
"cve": "CVE-2022-21452",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21452"
},
{
"cve": "CVE-2022-21454",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21454"
},
{
"cve": "CVE-2022-21457",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21457"
},
{
"cve": "CVE-2022-21459",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21459"
},
{
"cve": "CVE-2022-21460",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21460"
},
{
"cve": "CVE-2022-21462",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21462"
},
{
"cve": "CVE-2022-21478",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21478"
},
{
"cve": "CVE-2022-21479",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21479"
},
{
"cve": "CVE-2022-21482",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21482"
},
{
"cve": "CVE-2022-21483",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21483"
},
{
"cve": "CVE-2022-21484",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21484"
},
{
"cve": "CVE-2022-21485",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21485"
},
{
"cve": "CVE-2022-21486",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21486"
},
{
"cve": "CVE-2022-21489",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21489"
},
{
"cve": "CVE-2022-21490",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-21490"
},
{
"cve": "CVE-2022-22965",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-22965"
},
{
"cve": "CVE-2022-23181",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-23181"
},
{
"cve": "CVE-2022-23305",
"notes": [
{
"category": "description",
"text": "In Oracle MySQL existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T003343",
"T002207",
"67646",
"T000126",
"367115",
"398363",
"T004914",
"T016960"
],
"last_affected": [
"T022873",
"T022874",
"T022875",
"T022876",
"T022871",
"T022872"
]
},
"release_date": "2022-04-19T22:00:00.000+00:00",
"title": "CVE-2022-23305"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…