Vulnerability-Lookup

CVE-2022-30126 (GCVE-0-2022-30126)

Vulnerability from cvelistv5 – Published: 2022-05-16 17:05 – Updated: 2024-08-03 06:40

Title

Apache Tika Regular Expression Denial of Service in Standards Extractor

Summary

In Apache Tika, a regular expression in our StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only affects users who are running the StandardsExtractingContentHandler, which is a non-standard handler. This is fixed in 1.28.2 and 2.4.0

Severity

No CVSS data available.

CWE

Denial of Service

Assigner

apache

References

6 references

URL	Tags
https://lists.apache.org/thread/dh3syg68nxogbmlg1…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/05/16/3	mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2022/05/31/2	mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2022/06/27/5	mailing-listx_refsource_MLIST
https://www.oracle.com/security-alerts/cpujul2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache Tika	Affected: Apache Tika , ≤ 1.28.1 (custom)

Credits

This issue was discovered and reported by the CodeQL team members [@atorralba (Tony Torralba)](https://github.com/atorralba) and [@joefarebrother (Joseph Farebrother)](https://github.com/joefarebrother).

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T06:40:47.590Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4"
          },
          {
            "name": "[oss-security] 20220516 CVE-2022-30126: Apache Tika Regular Expression Denial of Service in Standards Extractor",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/05/16/3"
          },
          {
            "name": "[oss-security] 20220531 CVE-2022-30973: Apache Tika: Missing fix for CVE-2022-30126 in 1.28.2",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/05/31/2"
          },
          {
            "name": "[oss-security] 20220627 CVE-2022-33879: Apache Tika: Incomplete fix and new regex DoS in StandardsExtractingContentHandler",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/27/5"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0004/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Tika",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "1.28.1",
              "status": "affected",
              "version": "Apache Tika",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was discovered and reported by the CodeQL team members [@atorralba (Tony Torralba)](https://github.com/atorralba) and [@joefarebrother (Joseph Farebrother)](https://github.com/joefarebrother)."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Apache Tika, a regular expression in our StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only affects users who are running the StandardsExtractingContentHandler, which is a non-standard handler. This is fixed in 1.28.2 and 2.4.0"
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-07-25T16:54:25.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4"
        },
        {
          "name": "[oss-security] 20220516 CVE-2022-30126: Apache Tika Regular Expression Denial of Service in Standards Extractor",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/05/16/3"
        },
        {
          "name": "[oss-security] 20220531 CVE-2022-30973: Apache Tika: Missing fix for CVE-2022-30126 in 1.28.2",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/05/31/2"
        },
        {
          "name": "[oss-security] 20220627 CVE-2022-33879: Apache Tika: Incomplete fix and new regex DoS in StandardsExtractingContentHandler",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/27/5"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0004/"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apache Tika Regular Expression Denial of Service in Standards Extractor",
      "workarounds": [
        {
          "lang": "en",
          "value": "Upgrade to 1.28.2 or 2.4.0"
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-30126",
          "STATE": "PUBLIC",
          "TITLE": "Apache Tika Regular Expression Denial of Service in Standards Extractor"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Tika",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache Tika",
                            "version_value": "1.28.1"
                          },
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache Tika",
                            "version_value": "2.3.0 +1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "This issue was discovered and reported by the CodeQL team members [@atorralba (Tony Torralba)](https://github.com/atorralba) and [@joefarebrother (Joseph Farebrother)](https://github.com/joefarebrother)."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Apache Tika, a regular expression in our StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only affects users who are running the StandardsExtractingContentHandler, which is a non-standard handler. This is fixed in 1.28.2 and 2.4.0"
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4"
            },
            {
              "name": "[oss-security] 20220516 CVE-2022-30126: Apache Tika Regular Expression Denial of Service in Standards Extractor",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/05/16/3"
            },
            {
              "name": "[oss-security] 20220531 CVE-2022-30973: Apache Tika: Missing fix for CVE-2022-30126 in 1.28.2",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/05/31/2"
            },
            {
              "name": "[oss-security] 20220627 CVE-2022-33879: Apache Tika: Incomplete fix and new regex DoS in StandardsExtractingContentHandler",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/27/5"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0004/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0004/"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "Upgrade to 1.28.2 or 2.4.0"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-30126",
    "datePublished": "2022-05-16T17:05:13.000Z",
    "dateReserved": "2022-05-03T00:00:00.000Z",
    "dateUpdated": "2024-08-03T06:40:47.590Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-30126",
      "date": "2026-05-30",
      "epss": "0.00536",
      "percentile": "0.67765"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-30126\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2022-05-16T17:15:09.640\",\"lastModified\":\"2024-11-21T07:02:12.520\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Apache Tika, a regular expression in our StandardsText class, used by the StandardsExtractingContentHandler could lead to a denial of service caused by backtracking on a specially crafted file. This only affects users who are running the StandardsExtractingContentHandler, which is a non-standard handler. This is fixed in 1.28.2 and 2.4.0\"},{\"lang\":\"es\",\"value\":\"En Apache Tika, una expresi\u00f3n regular en nuestra clase StandardsText, usada por el StandardsExtractingContentHandler podr\u00eda conllevar a una denegaci\u00f3n de servicio causada por el backtracking en un archivo especialmente dise\u00f1ado. Esto s\u00f3lo afecta a usuarios que ejecutan StandardsExtractingContentHandler, que es un manejador no est\u00e1ndar. Esto ha sido corregido en versiones 1.28.2 y 2.4.0\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.28.3\",\"matchCriteriaId\":\"786759D7-A9FA-426A-8433-7781B954A989\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndExcluding\":\"2.4.0\",\"matchCriteriaId\":\"E737CBE3-C6A7-4195-A15D-CE0C08ED6097\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.7\",\"versionEndIncluding\":\"17.12\",\"matchCriteriaId\":\"08FA59A8-6A62-4B33-8952-D6E658F8DAC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"202AD518-2E9B-4062-B063-9858AE1F9CE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10864586-270E-4ACF-BDCC-ECFCD299305F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38340E3C-C452-4370-86D4-355B6B4E0A06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9C55C69-E22E-4B80-9371-5CD821D79FE2\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2022/05/16/3\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/05/31/2\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/06/27/5\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220624-0004/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/05/16/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/05/31/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/06/27/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/dh3syg68nxogbmlg13srd6gjn3h2z6r4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220624-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

WID-SEC-W-2023-0138

Vulnerability from csaf_certbund - Published: 2023-01-17 23:00 - Updated: 2025-07-15 22:00

Summary

Oracle Communications Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2019-17571

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2020-16156

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2021-41411

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2021-43797

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-22971

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-22978

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-25647

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-25857

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-30126

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-31692

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-3171

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-32212

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-33980

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-34917

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-35737

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-36055

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-37454

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-38752

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-39271

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-40146

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-40150

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-41720

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-42003

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-42252

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2022-42889

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2023-21824

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

CVE-2023-21848

Affected products

Known affected 11 products

Product	Identifier	Version
Oracle Communications Applications 3.0.3.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:3.0.3.1.0`	3.0.3.1.0
Oracle Communications Applications 10.0.1.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:10.0.1.6.0`	10.0.1.6.0
Oracle Communications Applications 8.0.0.6.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.6.0`	8.0.0.6.0
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
Oracle Communications Applications 6.3.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.3.1`	6.3.1
Oracle Communications Applications 8.1.0.20.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.1.0.20.0`	8.1.0.20.0
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	7.4.0
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.7.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.7.0`	8.0.0.7.0

Last affected 4 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.7.0 Oracle / Communications Applications		<=12.0.0.7.0
Oracle Communications Applications <=6.0.1 Oracle / Communications Applications		<=6.0.1
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2
Oracle Communications Applications <=5.5.9 Oracle / Communications Applications		<=5.5.9

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujan2023…	external
https://linux.oracle.com/errata/ELSA-2025-8432.html	external
https://www.ibm.com/support/pages/node/7239757	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0138 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0138.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0138 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0138"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - January 2023 - Appendix Oracle Communications Applications vom 2023-01-17",
        "url": "https://www.oracle.com/security-alerts/cpujan2023.html#AppendixCAGBU"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-8432 vom 2025-06-04",
        "url": "https://linux.oracle.com/errata/ELSA-2025-8432.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7239757 vom 2025-07-15",
        "url": "https://www.ibm.com/support/pages/node/7239757"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Communications Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-07-15T22:00:00.000+00:00",
      "generator": {
        "date": "2025-07-16T07:52:00.283+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2023-0138",
      "initial_release_date": "2023-01-17T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-01-17T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-06-03T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-07-15T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM QRadar SIEM",
            "product": {
              "name": "IBM QRadar SIEM",
              "product_id": "T021415",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:qradar_siem:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "6.3.1",
                "product": {
                  "name": "Oracle Communications Applications 6.3.1",
                  "product_id": "T018935",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:6.3.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.4.0",
                "product": {
                  "name": "Oracle Communications Applications 7.4.0",
                  "product_id": "T018938",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.4.1",
                "product": {
                  "name": "Oracle Communications Applications 7.4.1",
                  "product_id": "T018939",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.4.2",
                "product": {
                  "name": "Oracle Communications Applications \u003c=7.4.2",
                  "product_id": "T018940"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.4.2",
                "product": {
                  "name": "Oracle Communications Applications \u003c=7.4.2",
                  "product_id": "T018940-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "8.0.0.6.0",
                "product": {
                  "name": "Oracle Communications Applications 8.0.0.6.0",
                  "product_id": "T020662",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:8.0.0.6.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.5.0",
                "product": {
                  "name": "Oracle Communications Applications 7.5.0",
                  "product_id": "T021639",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.5.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "10.0.1.6.0",
                "product": {
                  "name": "Oracle Communications Applications 10.0.1.6.0",
                  "product_id": "T024967",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:10.0.1.6.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=12.0.0.7.0",
                "product": {
                  "name": "Oracle Communications Applications \u003c=12.0.0.7.0",
                  "product_id": "T024968"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=12.0.0.7.0",
                "product": {
                  "name": "Oracle Communications Applications \u003c=12.0.0.7.0",
                  "product_id": "T024968-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=5.5.9",
                "product": {
                  "name": "Oracle Communications Applications \u003c=5.5.9",
                  "product_id": "T025857"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=5.5.9",
                "product": {
                  "name": "Oracle Communications Applications \u003c=5.5.9",
                  "product_id": "T025857-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=6.0.1",
                "product": {
                  "name": "Oracle Communications Applications \u003c=6.0.1",
                  "product_id": "T025858"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=6.0.1",
                "product": {
                  "name": "Oracle Communications Applications \u003c=6.0.1",
                  "product_id": "T025858-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "3.0.3.1.0",
                "product": {
                  "name": "Oracle Communications Applications 3.0.3.1.0",
                  "product_id": "T025859",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:3.0.3.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.0.7.0",
                "product": {
                  "name": "Oracle Communications Applications 8.0.0.7.0",
                  "product_id": "T025860",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:8.0.0.7.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.0.20.0",
                "product": {
                  "name": "Oracle Communications Applications 8.1.0.20.0",
                  "product_id": "T025861",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:8.1.0.20.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Communications Applications"
          },
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-17571",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2019-17571"
    },
    {
      "cve": "CVE-2020-16156",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2020-16156"
    },
    {
      "cve": "CVE-2021-41411",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-41411"
    },
    {
      "cve": "CVE-2021-43797",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-43797"
    },
    {
      "cve": "CVE-2022-22971",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-22971"
    },
    {
      "cve": "CVE-2022-22978",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-22978"
    },
    {
      "cve": "CVE-2022-25647",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-25647"
    },
    {
      "cve": "CVE-2022-25857",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-25857"
    },
    {
      "cve": "CVE-2022-30126",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-30126"
    },
    {
      "cve": "CVE-2022-31692",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-31692"
    },
    {
      "cve": "CVE-2022-3171",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-32212",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-32212"
    },
    {
      "cve": "CVE-2022-33980",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-33980"
    },
    {
      "cve": "CVE-2022-34917",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-34917"
    },
    {
      "cve": "CVE-2022-35737",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-35737"
    },
    {
      "cve": "CVE-2022-36055",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-36055"
    },
    {
      "cve": "CVE-2022-37454",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-37454"
    },
    {
      "cve": "CVE-2022-38752",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-38752"
    },
    {
      "cve": "CVE-2022-39271",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-39271"
    },
    {
      "cve": "CVE-2022-40146",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40146"
    },
    {
      "cve": "CVE-2022-40150",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40150"
    },
    {
      "cve": "CVE-2022-41720",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-41720"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42252",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42252"
    },
    {
      "cve": "CVE-2022-42889",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42889"
    },
    {
      "cve": "CVE-2023-21824",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21824"
    },
    {
      "cve": "CVE-2023-21848",
      "product_status": {
        "known_affected": [
          "T025859",
          "T024967",
          "T020662",
          "T021415",
          "T018935",
          "T025861",
          "T021639",
          "T018938",
          "T004914",
          "T018939",
          "T025860"
        ],
        "last_affected": [
          "T024968",
          "T025858",
          "T018940",
          "T025857"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21848"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-30126 (GCVE-0-2022-30126)

WID-SEC-W-2023-0138

Tags

Sightings

Nomenclature