Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-51775 (GCVE-0-2023-51775)
Vulnerability from cvelistv5 – Published: 2023-12-25 00:00 – Updated: 2025-11-03 21:50
VLAI
EPSS
Summary
The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
Severity
6.5 (Medium)
CWE
- n/a
Assigner
References
1 reference
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-11-03T21:50:19.303Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://bitbucket.org/b_c/jose4j/issues/212"
},
{
"url": "https://security.netapp.com/advisory/ntap-20241108-0002/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:jose4j_project:jose4j:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "jose4j",
"vendor": "jose4j_project",
"versions": [
{
"lessThan": "0.9.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-51775",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-01T18:51:39.813007Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400 Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-14T18:42:03.439Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-12-25T21:16:04.514Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://bitbucket.org/b_c/jose4j/issues/212"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2023-51775",
"datePublished": "2023-12-25T00:00:00.000Z",
"dateReserved": "2023-12-25T00:00:00.000Z",
"dateUpdated": "2025-11-03T21:50:19.303Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-51775",
"date": "2026-05-31",
"epss": "0.00383",
"percentile": "0.59874"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-51775\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2024-02-29T01:42:05.637\",\"lastModified\":\"2025-11-03T22:16:31.180\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.\"},{\"lang\":\"es\",\"value\":\"El componente jose4j anterior a 0.9.4 para Java permite a los atacantes provocar una denegaci\u00f3n de servicio (consumo de CPU) mediante un valor grande de p2c (tambi\u00e9n conocido como PBES2 Count).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jose4j_project:jose4j:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.9.4\",\"matchCriteriaId\":\"8C8911C9-CC77-4C93-A40F-B5F8FEFBD34D\"}]}]}],\"references\":[{\"url\":\"https://bitbucket.org/b_c/jose4j/issues/212\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://bitbucket.org/b_c/jose4j/issues/212\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20241108-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://bitbucket.org/b_c/jose4j/issues/212\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20241108-0002/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T21:50:19.303Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-51775\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-03-01T18:51:39.813007Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:jose4j_project:jose4j:*:*:*:*:*:*:*:*\"], \"vendor\": \"jose4j_project\", \"product\": \"jose4j\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.9.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"CWE-400 Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-14T18:41:55.268Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://bitbucket.org/b_c/jose4j/issues/212\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2023-12-25T21:16:04.514Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-51775\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-03T21:50:19.303Z\", \"dateReserved\": \"2023-12-25T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2023-12-25T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2024:8080
Vulnerability from csaf_redhat - Published: 2024-10-14 18:07 - Updated: 2026-05-27 16:05Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update
Severity
Important
Notes
Topic: An update is now available for Red Hat JBoss Enterprise Application Platform 7.4.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.19 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.18, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.19 Release Notes for information about the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* UNDERTOW-2429 undertow: Improper State Management in Proxy Protocol parsing causes information leakage [eap-7.4.z] (CVE-2024-7885)
* org.jsoup/jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled [eap-7.4.z] (CVE-2022-36033)
* wildfly-domain-http: wildfly: No timeout for EAP management interface may lead to Denial of Service (DoS) [eap-7.4.z] (CVE-2024-4029)
* xalan: integer truncation issue in Xalan-J (JAXP, 8285407) [eap-7.4.z] (CVE-2022-34169)
* jose4j: denial of service via specially crafted JWE [eap-7.4.z] (CVE-2023-51775)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 7
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:7.4
|
— |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in jsoup, a Java HTML parser built for HTML editing, cleaning, scraping, and Cross-site scripting (XSS) safety. An issue in jsoup may incorrectly sanitize HTML, including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-default `SafeList.preserveRelativeLinks` option is enabled, HTML, including `javascript:` URLs crafted with control characters, will not be sanitized. If the site that this HTML is published on does not set a Content Security Policy, an XSS attack is possible.
6.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 7
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:7.4
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the jose.4.j (jose4j) library. The JWE key management algorithms based on PBKDF2 require a JOSE Header Parameter called p2c (PBES2 Count). This parameter dictates the number of PBKDF2 iterations needed to derive a CEK wrapping key. Its primary purpose is to intentionally slow down the key derivation function, making password brute-force and dictionary attacks more resource-intensive. However, if an attacker sets the p2c parameter in JWE to a large number, it can cause high computational consumption, resulting in a denial of service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 7
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:7.4
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in Wildfly’s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile limit as there is no possibility to configure or set a maximum number of connections.
4.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 7
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:7.4
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 7
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:7.4
|
— |
Vendor Fix
fix
|
Threats
Impact
Important
References
41 references
Acknowledgments
BfC
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat JBoss Enterprise Application Platform 7.4.\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.19 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.18, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.19 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* UNDERTOW-2429 undertow: Improper State Management in Proxy Protocol parsing causes information leakage [eap-7.4.z] (CVE-2024-7885)\n\n* org.jsoup/jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled [eap-7.4.z] (CVE-2022-36033)\n\n* wildfly-domain-http: wildfly: No timeout for EAP management interface may lead to Denial of Service (DoS) [eap-7.4.z] (CVE-2024-4029)\n\n* xalan: integer truncation issue in Xalan-J (JAXP, 8285407) [eap-7.4.z] (CVE-2022-34169)\n\n* jose4j: denial of service via specially crafted JWE [eap-7.4.z] (CVE-2023-51775)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8080",
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
"url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
},
{
"category": "external",
"summary": "2108554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2108554"
},
{
"category": "external",
"summary": "2127078",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2127078"
},
{
"category": "external",
"summary": "2266921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266921"
},
{
"category": "external",
"summary": "2278615",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278615"
},
{
"category": "external",
"summary": "2305290",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305290"
},
{
"category": "external",
"summary": "JBEAP-27357",
"url": "https://issues.redhat.com/browse/JBEAP-27357"
},
{
"category": "external",
"summary": "JBEAP-27548",
"url": "https://issues.redhat.com/browse/JBEAP-27548"
},
{
"category": "external",
"summary": "JBEAP-27613",
"url": "https://issues.redhat.com/browse/JBEAP-27613"
},
{
"category": "external",
"summary": "JBEAP-27658",
"url": "https://issues.redhat.com/browse/JBEAP-27658"
},
{
"category": "external",
"summary": "JBEAP-27700",
"url": "https://issues.redhat.com/browse/JBEAP-27700"
},
{
"category": "external",
"summary": "JBEAP-27701",
"url": "https://issues.redhat.com/browse/JBEAP-27701"
},
{
"category": "external",
"summary": "JBEAP-27713",
"url": "https://issues.redhat.com/browse/JBEAP-27713"
},
{
"category": "external",
"summary": "JBEAP-27714",
"url": "https://issues.redhat.com/browse/JBEAP-27714"
},
{
"category": "external",
"summary": "JBEAP-27715",
"url": "https://issues.redhat.com/browse/JBEAP-27715"
},
{
"category": "external",
"summary": "JBEAP-27746",
"url": "https://issues.redhat.com/browse/JBEAP-27746"
},
{
"category": "external",
"summary": "JBEAP-27747",
"url": "https://issues.redhat.com/browse/JBEAP-27747"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8080.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update",
"tracking": {
"current_release_date": "2026-05-27T16:05:58+00:00",
"generator": {
"date": "2026-05-27T16:05:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2024:8080",
"initial_release_date": "2024-10-14T18:07:02+00:00",
"revision_history": [
{
"date": "2024-10-14T18:07:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-23T22:28:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-27T16:05:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 7",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 7",
"product_id": "Red Hat JBoss Enterprise Application Platform 7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-34169",
"cwe": {
"id": "CWE-192",
"name": "Integer Coercion Error"
},
"discovery_date": "2022-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2108554"
}
],
"notes": [
{
"category": "description",
"text": "The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-34169"
},
{
"category": "external",
"summary": "RHBZ#2108554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2108554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-34169",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34169"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-34169",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34169"
}
],
"release_date": "2022-07-19T20:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-14T18:07:02+00:00",
"details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)"
},
{
"cve": "CVE-2022-36033",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2022-09-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2127078"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsoup, a Java HTML parser built for HTML editing, cleaning, scraping, and Cross-site scripting (XSS) safety. An issue in jsoup may incorrectly sanitize HTML, including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-default `SafeList.preserveRelativeLinks` option is enabled, HTML, including `javascript:` URLs crafted with control characters, will not be sanitized. If the site that this HTML is published on does not set a Content Security Policy, an XSS attack is possible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-36033"
},
{
"category": "external",
"summary": "RHBZ#2127078",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2127078"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-36033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36033"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-36033",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36033"
}
],
"release_date": "2022-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-14T18:07:02+00:00",
"details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled"
},
{
"cve": "CVE-2023-51775",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-02-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2266921"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the jose.4.j (jose4j) library. The JWE key management algorithms based on PBKDF2 require a JOSE Header Parameter called p2c (PBES2 Count). This parameter dictates the number of PBKDF2 iterations needed to derive a CEK wrapping key. Its primary purpose is to intentionally slow down the key derivation function, making password brute-force and dictionary attacks more resource-intensive. However, if an attacker sets the p2c parameter in JWE to a large number, it can cause high computational consumption, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose4j: denial of service via specially crafted JWE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in the jose4j library, where the \"p2c\" parameter in PBKDF2-based JWE key management algorithms can be manipulated to induce high computational consumption, is classified as moderate severity due to its potential impact on service availability and resource exhaustion. By setting a large value for \"p2c\", an attacker can force the server to perform an excessive number of PBKDF2 iterations during key derivation. This results in increased CPU and memory usage, potentially leading to degraded performance or temporary denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51775"
},
{
"category": "external",
"summary": "RHBZ#2266921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51775"
}
],
"release_date": "2024-02-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-14T18:07:02+00:00",
"details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose4j: denial of service via specially crafted JWE"
},
{
"cve": "CVE-2024-4029",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2278615"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Wildfly\u2019s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile limit as there is no possibility to configure or set a maximum number of connections.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "wildfly: No timeout for EAP management interface may lead to Denial of Service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this as a Low impact since this requires high privileges to jeopardize the system. The management interface is normally internal/local only and not exposed externally.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4029"
},
{
"category": "external",
"summary": "RHBZ#2278615",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278615"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4029",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4029"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4029",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4029"
}
],
"release_date": "2024-05-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-14T18:07:02+00:00",
"details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
},
{
"category": "workaround",
"details": "Currently there is no available mitigation for this vulnerability. Please make sure to perform updates as they become available.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "wildfly: No timeout for EAP management interface may lead to Denial of Service (DoS)"
},
{
"acknowledgments": [
{
"names": [
"BfC"
]
}
],
"cve": "CVE-2024-7885",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2024-08-16T09:00:41.686000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2305290"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "undertow: Improper State Management in Proxy Protocol parsing causes information leakage",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat decided to rate this vulnerability as Important because of the potential loss of Availability and no additional privileges being required.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7885"
},
{
"category": "external",
"summary": "RHBZ#2305290",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305290"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7885",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7885"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7885",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7885"
}
],
"release_date": "2024-08-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-14T18:07:02+00:00",
"details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "undertow: Improper State Management in Proxy Protocol parsing causes information leakage"
}
]
}
SUSE-SU-2024:1507-1
Vulnerability from csaf_suse - Published: 2024-05-06 09:46 - Updated: 2024-05-06 09:46Summary
Security update for SUSE Manager Server 4.3
Severity
Important
Notes
Title of the patch: Security update for SUSE Manager Server 4.3
Description of the patch:
This update fixes the following issues:
cobbler:
- Provide option to use pre-built GRUB bootloader
- Prevent parallel executions of cobbler sync actions (bsc#1218764)
image-sync-formula:
- Update to version 0.1.1711646883.4a44375
* Add missing URL tag
* Update license to SPDX syntax
inter-server-sync:
- Version 0.3.3-1
* Correct primary key export for table suseproductsccrepository (bsc#1220169)
jose4j:
- CVE-2023-51775: Fix denial of service (CPU consumption) via a large p2c
(aka PBES2 Count) value (bsc#1220726)
smdba:
- Version 1.7.13
* postmaster no longer exists from >=16 and it's an alias
for postgresql, using postgresql command
spacecmd:
- Version 4.3.27-0
* Update translation strings
spacewalk-backend:
- Version 4.3.28-0
* Strip whitespace from .deb package metadata (bsc#1214387)
* Fix inserting NULL into some columns during ISSv1 sync (bsc#1220980)
* Add support for package signature type V4 RSA/SHA512 (bsc#1221465)
* Unquote HTML-encoded credentials before synchronizing repositories (bsc#1217204)
spacewalk-certs-tools:
- Version 4.3.23-0
* Fix liberty bootstrapping when zypper is installed (bsc#1222347)
* Apply reboot method changes for transactional systems in the bootstrap script
spacewalk-client-tools:
- Version 4.3.19-0
* Update translation strings
spacewalk-config:
- Version 4.3.13-0
* Be explicit about default Apache configs being overwritten on
updates and point to making custom configs. (bsc#1219061)
spacewalk-java:
- Version 4.3.73-0
* New API endpoint for getRelevantErrata. It takes multiple
servers as argument and it returns an array of maps
representing the errata that can be applied to each system
- Version 4.3.72-0
* Use execution module call to detect client instance flavor
(PAYG/BYOS) in public cloud (bsc#1218805)
* Update help text for the custom repo filter field (bsc#1217874)
* Fix issue where Salt cannot access autoinstallation files
(bsc#1220221)
* Fix issue when checking for credential duplication
(bsc#1218957)
* Fix matching epoch while creating Ubuntu erratas
* When an action that belongs to an action chain is unscheduled,
unschedule the action chain as well (bsc#1221784)
* Reschedule failed SSH actions caused by a connection error due
to a scheduled reboot
* Fix removal of old IPv6 addresses (bsc#1214340)
* Do not automatically add child channels outside of selected
base channel (bsc#1220101)
* Fix listProxies API call (bsc#1219233)
* Fix system.provisionSystem when called via HTTP API (bsc#1219875)
* Remove package sync not available message in
Software > Packages > Profile since it is no longer available
for supported clients (bsc#1221279)
* Fix login for read-only users when using HTTP API (bsc#1221111)
* Add one-shot action execution to recurring custom state
create/edit
* Fix a typo in 'Deploy Files' page
* Drop system password as identifier on SCC system registration
(bsc#1219634, bsc#1221182)
* Fix memory size extraction in virtual instances (bsc#1219634)
* Fix virtual systems filters (bsc#1208572)
* Update license to include the year 2024
* Add timeout for SMTP server connection (bsc#1218931)
* Commit Salt event removal in case of process failure (bsc#1218931)
* Users with API read only are only allowed to make GET requests
* Ignore retry suffix when getting recurring action id from
schedule name
* Sort CLM project filters by filter name
spacewalk-web:
- Version 4.3.38-0
* Upgrade json5 to 2.2.3
* Upgrade semver to 7.6.0
* Add one-shot action execution to recurring custom state
create/edit
* Fix virtual systems filters (bsc#1208572)
* Improve CLM Create New Filter button
* Bump the WebUI version to 4.3.12
subscription-matcher:
- Version 0.37
* add missing part number (bsc#1221922)
* Fix penalties logging by initializing the score director
consistently
- Removed wrong apache-commons-lang dependency
- Version 0.36
* Fixed Log4j 2 initialization
supportutils-plugin-susemanager:
- Version 4.3.11-0
* Add Salt and Reposync connections to minimum required DB
connections calculation
susemanager:
- Version 4.3.35-0
* Add bootstrap repository definition for openSUSE Leap 15.6
* Add bootstrap repository definition for SUSE Linux Enterprise 15 SP6
susemanager-docs_en:
- Removed Debian 10 from the list of supported clients
- Added new workflow describing updating of clients using recurring
actions to Commown Workflows
- Added documentation on adding a storage device for VMWare
- Documented registercloudguest tools for registering public cloud
installation (BYOS) by adding a reference to the Public Cloud
Guide
- Added information about requirements for the PostgreSQL database
to the Installation and Upgrade Guide (bsc#1220376)
- Fixed the instructions for SSL Certificates (bsc#1219061)
- Remove package sync paragraph in package-management doc since
it is not available for Salt clients and traditional clients are
no longer supported (bsc#1221279)
- Fixed incorrect reference to SUSE Linux Enterprise Server 15 SP5
as base product for SUSE Manager 4.3, even in public cloud
- Updated VM based installation for 4.3 VM image with ignition or
cloudinit in Installation and Upgrade Guide
- Added reference from Hub documentation to Inter-Server
Synchronization in Large Deployment Guide
- Documented Virtualization Guest and Virtualization Host Formula
- Reformatted Supported Clients tables in Client Configuration Guide
and Installation and Upgrade Guide
- Add documentation about SMTP timeout configuration
- Documented SSH key rotation in Salt Guide (bsc#1170848)
- Documented liberate formula in Salt Guide
- Fixed Prepare on-demand images section in Client Configuration
- Fixed a changed configuration parameter for salt-ssh
- Added Pay-as-you-go on the Cloud: FAQ document
- Updated max-connections tuning recommendation in Large Deployment
- Added troubleshooting instructions for setting up in public cloud
(BYOS) to Administration Guide
- Added section about migrating Enterprise Linux (EL) clients to
SUSE Liberty Linux to Client Configuration Guide
- Added detailed information about the messages produced by
subscription matcher
- Added Pay-as-you-go as supported service on Azure to the Public
Cloud Guide
- Added and fixed configuration details in Troubleshooting Renaming
Server in Administration Guide
susemanager-schema:
- Version 4.3.25-0
* Add update-salt to internal state table
susemanager-sls:
- Version 4.3.41-0
* Use execution module call to detect client instance flavor
(PAYG/BYOS) in public cloud (bsc#1218805)
* Do not log dnf needs-restarting output in Salt's log (bsc#1220194)
* Dynamically load an SELinux policy for 'Push via SSH tunnel'
for SELinux enabled clients. This policy allows communication
over a custom SSH port
* Fix reboot needed detection for SUSE systems
* Fix SUSE Liberty Linux bootstrapping when Zypper is installed
(bsc#1222347)
* Distinguish between different SUSE versions when detecting if a
reboot is needed (bsc#1220903, bsc#1221571)
* Improve updatestack update in uptodate state
* Add a standalone update-salt state
* Add pillar check to skip reboot_if_needed state
* Recognize .tar.xz and .ext4 image files (bsc#1216085)
* Avoid issues on reactivating traditional clients as Salt managed
* Fix the case of missing requisites on bootstrap (bsc#1220705)
susemanager-sync-data:
- Version 4.3.17-0
* AlmaLinux 9 PowerTools was renamed into CRB (bsc#1222110)
uyuni-common-libs:
- Version 4.3.10-0
* Add support for package signature type V4 RSA/SHA384
* Add support for package signature type V4 RSA/SHA512 (bsc#1221465)
uyuni-reportdb-schema:
- Version 4.3.10-0
* Provide reportdb upgrade schema path structure
How to apply this update:
1. Log in as root user to the SUSE Manager Server.
2. Stop the Spacewalk service:
`spacewalk-service stop`
3. Apply the patch using either zypper patch or YaST Online Update.
4. Start the Spacewalk service:
`spacewalk-service start`
Patchnames: SUSE-2024-1507,SUSE-SLE-Module-SUSE-Manager-Proxy-4.3-2024-1507,SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-1507
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Proxy Module 4.3:mgr-daemon-4.3.9-150400.3.15.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:python3-spacewalk-check-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-check-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-client-setup-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:cobbler-3.3.3-150400.5.42.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:jose4j-0.5.1-150400.3.9.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-app-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-server-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-base-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-config-4.3.13-150400.3.15.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-html-4.3.38-150400.3.42.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-java-4.3.73-150400.3.79.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-java-config-4.3.73-150400.3.79.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-java-lib-4.3.73-150400.3.79.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:subscription-matcher-0.37-150400.3.22.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-docs_en-4.3-150400.9.56.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-schema-4.3.25-150400.3.39.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-schema-utility-4.3.25-150400.3.39.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-sls-4.3.41-150400.3.47.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-sync-data-4.3.17-150400.3.25.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:uyuni-config-modules-4.3.41-150400.3.47.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.3:uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 4.3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\ncobbler:\n\n- Provide option to use pre-built GRUB bootloader\n- Prevent parallel executions of cobbler sync actions (bsc#1218764)\n\nimage-sync-formula:\n\n- Update to version 0.1.1711646883.4a44375 \n * Add missing URL tag\n * Update license to SPDX syntax\n\ninter-server-sync:\n\n- Version 0.3.3-1\n * Correct primary key export for table suseproductsccrepository (bsc#1220169)\n\njose4j:\n\n- CVE-2023-51775: Fix denial of service (CPU consumption) via a large p2c\n (aka PBES2 Count) value (bsc#1220726)\n\nsmdba:\n\n- Version 1.7.13\n * postmaster no longer exists from \u003e=16 and it\u0027s an alias \n for postgresql, using postgresql command\n\nspacecmd:\n\n- Version 4.3.27-0\n * Update translation strings\n\nspacewalk-backend:\n\n- Version 4.3.28-0\n * Strip whitespace from .deb package metadata (bsc#1214387)\n * Fix inserting NULL into some columns during ISSv1 sync (bsc#1220980)\n * Add support for package signature type V4 RSA/SHA512 (bsc#1221465)\n * Unquote HTML-encoded credentials before synchronizing repositories (bsc#1217204)\n\nspacewalk-certs-tools:\n\n- Version 4.3.23-0\n * Fix liberty bootstrapping when zypper is installed (bsc#1222347)\n * Apply reboot method changes for transactional systems in the bootstrap script\n\nspacewalk-client-tools:\n\n- Version 4.3.19-0\n * Update translation strings\n\nspacewalk-config:\n\n- Version 4.3.13-0\n * Be explicit about default Apache configs being overwritten on\n updates and point to making custom configs. (bsc#1219061)\n\nspacewalk-java:\n\n- Version 4.3.73-0\n * New API endpoint for getRelevantErrata. It takes multiple\n servers as argument and it returns an array of maps\n representing the errata that can be applied to each system\n- Version 4.3.72-0\n * Use execution module call to detect client instance flavor\n (PAYG/BYOS) in public cloud (bsc#1218805)\n * Update help text for the custom repo filter field (bsc#1217874)\n * Fix issue where Salt cannot access autoinstallation files\n (bsc#1220221)\n * Fix issue when checking for credential duplication\n (bsc#1218957)\n * Fix matching epoch while creating Ubuntu erratas\n * When an action that belongs to an action chain is unscheduled,\n unschedule the action chain as well (bsc#1221784)\n * Reschedule failed SSH actions caused by a connection error due\n to a scheduled reboot\n * Fix removal of old IPv6 addresses (bsc#1214340)\n * Do not automatically add child channels outside of selected\n base channel (bsc#1220101)\n * Fix listProxies API call (bsc#1219233)\n * Fix system.provisionSystem when called via HTTP API (bsc#1219875)\n * Remove package sync not available message in\n Software \u003e Packages \u003e Profile since it is no longer available\n for supported clients (bsc#1221279)\n * Fix login for read-only users when using HTTP API (bsc#1221111)\n * Add one-shot action execution to recurring custom state\n create/edit\n * Fix a typo in \u0027Deploy Files\u0027 page\n * Drop system password as identifier on SCC system registration\n (bsc#1219634, bsc#1221182)\n * Fix memory size extraction in virtual instances (bsc#1219634)\n * Fix virtual systems filters (bsc#1208572)\n * Update license to include the year 2024\n * Add timeout for SMTP server connection (bsc#1218931)\n * Commit Salt event removal in case of process failure (bsc#1218931)\n * Users with API read only are only allowed to make GET requests\n * Ignore retry suffix when getting recurring action id from\n schedule name\n * Sort CLM project filters by filter name\n\nspacewalk-web:\n\n- Version 4.3.38-0\n * Upgrade json5 to 2.2.3\n * Upgrade semver to 7.6.0\n * Add one-shot action execution to recurring custom state\n create/edit\n * Fix virtual systems filters (bsc#1208572)\n * Improve CLM Create New Filter button\n * Bump the WebUI version to 4.3.12\n\nsubscription-matcher:\n\n- Version 0.37\n * add missing part number (bsc#1221922)\n * Fix penalties logging by initializing the score director\n consistently\n- Removed wrong apache-commons-lang dependency\n- Version 0.36\n * Fixed Log4j 2 initialization\n\nsupportutils-plugin-susemanager:\n\n- Version 4.3.11-0\n * Add Salt and Reposync connections to minimum required DB\n connections calculation\n\nsusemanager:\n\n- Version 4.3.35-0\n * Add bootstrap repository definition for openSUSE Leap 15.6\n * Add bootstrap repository definition for SUSE Linux Enterprise 15 SP6\n\nsusemanager-docs_en:\n\n- Removed Debian 10 from the list of supported clients\n- Added new workflow describing updating of clients using recurring\n actions to Commown Workflows\n- Added documentation on adding a storage device for VMWare\n- Documented registercloudguest tools for registering public cloud \n installation (BYOS) by adding a reference to the Public Cloud\n Guide\n- Added information about requirements for the PostgreSQL database\n to the Installation and Upgrade Guide (bsc#1220376)\n- Fixed the instructions for SSL Certificates (bsc#1219061)\n- Remove package sync paragraph in package-management doc since\n it is not available for Salt clients and traditional clients are \n no longer supported (bsc#1221279)\n- Fixed incorrect reference to SUSE Linux Enterprise Server 15 SP5\n as base product for SUSE Manager 4.3, even in public cloud\n- Updated VM based installation for 4.3 VM image with ignition or \n cloudinit in Installation and Upgrade Guide\n- Added reference from Hub documentation to Inter-Server\n Synchronization in Large Deployment Guide\n- Documented Virtualization Guest and Virtualization Host Formula\n- Reformatted Supported Clients tables in Client Configuration Guide\n and Installation and Upgrade Guide\n- Add documentation about SMTP timeout configuration\n- Documented SSH key rotation in Salt Guide (bsc#1170848)\n- Documented liberate formula in Salt Guide\n- Fixed Prepare on-demand images section in Client Configuration \n- Fixed a changed configuration parameter for salt-ssh\n- Added Pay-as-you-go on the Cloud: FAQ document\n- Updated max-connections tuning recommendation in Large Deployment\n- Added troubleshooting instructions for setting up in public cloud\n (BYOS) to Administration Guide\n- Added section about migrating Enterprise Linux (EL) clients to\n SUSE Liberty Linux to Client Configuration Guide\n- Added detailed information about the messages produced by\n subscription matcher\n- Added Pay-as-you-go as supported service on Azure to the Public\n Cloud Guide\n- Added and fixed configuration details in Troubleshooting Renaming\n Server in Administration Guide\n\nsusemanager-schema:\n\n- Version 4.3.25-0\n * Add update-salt to internal state table\n\nsusemanager-sls:\n\n- Version 4.3.41-0\n * Use execution module call to detect client instance flavor\n (PAYG/BYOS) in public cloud (bsc#1218805)\n * Do not log dnf needs-restarting output in Salt\u0027s log (bsc#1220194)\n * Dynamically load an SELinux policy for \u0027Push via SSH tunnel\u0027\n for SELinux enabled clients. This policy allows communication\n over a custom SSH port\n * Fix reboot needed detection for SUSE systems\n * Fix SUSE Liberty Linux bootstrapping when Zypper is installed\n (bsc#1222347)\n * Distinguish between different SUSE versions when detecting if a\n reboot is needed (bsc#1220903, bsc#1221571)\n * Improve updatestack update in uptodate state\n * Add a standalone update-salt state\n * Add pillar check to skip reboot_if_needed state\n * Recognize .tar.xz and .ext4 image files (bsc#1216085)\n * Avoid issues on reactivating traditional clients as Salt managed\n * Fix the case of missing requisites on bootstrap (bsc#1220705)\n\nsusemanager-sync-data:\n\n- Version 4.3.17-0\n * AlmaLinux 9 PowerTools was renamed into CRB (bsc#1222110)\n\nuyuni-common-libs:\n\n- Version 4.3.10-0\n * Add support for package signature type V4 RSA/SHA384\n * Add support for package signature type V4 RSA/SHA512 (bsc#1221465)\n\nuyuni-reportdb-schema:\n\n- Version 4.3.10-0\n * Provide reportdb upgrade schema path structure\n\nHow to apply this update:\n\n1. Log in as root user to the SUSE Manager Server.\n2. Stop the Spacewalk service:\n`spacewalk-service stop`\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Start the Spacewalk service:\n`spacewalk-service start`\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1507,SUSE-SLE-Module-SUSE-Manager-Proxy-4.3-2024-1507,SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-1507",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1507-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1507-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241507-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1507-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-May/035170.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170848",
"url": "https://bugzilla.suse.com/1170848"
},
{
"category": "self",
"summary": "SUSE Bug 1208572",
"url": "https://bugzilla.suse.com/1208572"
},
{
"category": "self",
"summary": "SUSE Bug 1214340",
"url": "https://bugzilla.suse.com/1214340"
},
{
"category": "self",
"summary": "SUSE Bug 1214387",
"url": "https://bugzilla.suse.com/1214387"
},
{
"category": "self",
"summary": "SUSE Bug 1216085",
"url": "https://bugzilla.suse.com/1216085"
},
{
"category": "self",
"summary": "SUSE Bug 1217204",
"url": "https://bugzilla.suse.com/1217204"
},
{
"category": "self",
"summary": "SUSE Bug 1217874",
"url": "https://bugzilla.suse.com/1217874"
},
{
"category": "self",
"summary": "SUSE Bug 1218764",
"url": "https://bugzilla.suse.com/1218764"
},
{
"category": "self",
"summary": "SUSE Bug 1218805",
"url": "https://bugzilla.suse.com/1218805"
},
{
"category": "self",
"summary": "SUSE Bug 1218931",
"url": "https://bugzilla.suse.com/1218931"
},
{
"category": "self",
"summary": "SUSE Bug 1218957",
"url": "https://bugzilla.suse.com/1218957"
},
{
"category": "self",
"summary": "SUSE Bug 1219061",
"url": "https://bugzilla.suse.com/1219061"
},
{
"category": "self",
"summary": "SUSE Bug 1219233",
"url": "https://bugzilla.suse.com/1219233"
},
{
"category": "self",
"summary": "SUSE Bug 1219634",
"url": "https://bugzilla.suse.com/1219634"
},
{
"category": "self",
"summary": "SUSE Bug 1219875",
"url": "https://bugzilla.suse.com/1219875"
},
{
"category": "self",
"summary": "SUSE Bug 1220101",
"url": "https://bugzilla.suse.com/1220101"
},
{
"category": "self",
"summary": "SUSE Bug 1220169",
"url": "https://bugzilla.suse.com/1220169"
},
{
"category": "self",
"summary": "SUSE Bug 1220194",
"url": "https://bugzilla.suse.com/1220194"
},
{
"category": "self",
"summary": "SUSE Bug 1220221",
"url": "https://bugzilla.suse.com/1220221"
},
{
"category": "self",
"summary": "SUSE Bug 1220376",
"url": "https://bugzilla.suse.com/1220376"
},
{
"category": "self",
"summary": "SUSE Bug 1220705",
"url": "https://bugzilla.suse.com/1220705"
},
{
"category": "self",
"summary": "SUSE Bug 1220726",
"url": "https://bugzilla.suse.com/1220726"
},
{
"category": "self",
"summary": "SUSE Bug 1220903",
"url": "https://bugzilla.suse.com/1220903"
},
{
"category": "self",
"summary": "SUSE Bug 1220980",
"url": "https://bugzilla.suse.com/1220980"
},
{
"category": "self",
"summary": "SUSE Bug 1221111",
"url": "https://bugzilla.suse.com/1221111"
},
{
"category": "self",
"summary": "SUSE Bug 1221182",
"url": "https://bugzilla.suse.com/1221182"
},
{
"category": "self",
"summary": "SUSE Bug 1221279",
"url": "https://bugzilla.suse.com/1221279"
},
{
"category": "self",
"summary": "SUSE Bug 1221465",
"url": "https://bugzilla.suse.com/1221465"
},
{
"category": "self",
"summary": "SUSE Bug 1221571",
"url": "https://bugzilla.suse.com/1221571"
},
{
"category": "self",
"summary": "SUSE Bug 1221784",
"url": "https://bugzilla.suse.com/1221784"
},
{
"category": "self",
"summary": "SUSE Bug 1221922",
"url": "https://bugzilla.suse.com/1221922"
},
{
"category": "self",
"summary": "SUSE Bug 1222110",
"url": "https://bugzilla.suse.com/1222110"
},
{
"category": "self",
"summary": "SUSE Bug 1222347",
"url": "https://bugzilla.suse.com/1222347"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51775 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51775/"
}
],
"title": "Security update for SUSE Manager Server 4.3",
"tracking": {
"current_release_date": "2024-05-06T09:46:03Z",
"generator": {
"date": "2024-05-06T09:46:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1507-1",
"initial_release_date": "2024-05-06T09:46:03Z",
"revision_history": [
{
"date": "2024-05-06T09:46:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "inter-server-sync-0.3.3-150400.3.30.4.aarch64",
"product": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.aarch64",
"product_id": "inter-server-sync-0.3.3-150400.3.30.4.aarch64"
}
},
{
"category": "product_version",
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64",
"product": {
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64",
"product_id": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64"
}
},
{
"category": "product_version",
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64",
"product": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64",
"product_id": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.aarch64"
}
},
{
"category": "product_version",
"name": "smdba-1.7.13-0.150400.4.12.4.aarch64",
"product": {
"name": "smdba-1.7.13-0.150400.4.12.4.aarch64",
"product_id": "smdba-1.7.13-0.150400.4.12.4.aarch64"
}
},
{
"category": "product_version",
"name": "susemanager-4.3.35-150400.3.48.6.aarch64",
"product": {
"name": "susemanager-4.3.35-150400.3.48.6.aarch64",
"product_id": "susemanager-4.3.35-150400.3.48.6.aarch64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.3.35-150400.3.48.6.aarch64",
"product": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.aarch64",
"product_id": "susemanager-tools-4.3.35-150400.3.48.6.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cobbler-3.3.3-150400.5.42.5.noarch",
"product": {
"name": "cobbler-3.3.3-150400.5.42.5.noarch",
"product_id": "cobbler-3.3.3-150400.5.42.5.noarch"
}
},
{
"category": "product_version",
"name": "cobbler-tests-3.3.3-150400.5.42.5.noarch",
"product": {
"name": "cobbler-tests-3.3.3-150400.5.42.5.noarch",
"product_id": "cobbler-tests-3.3.3-150400.5.42.5.noarch"
}
},
{
"category": "product_version",
"name": "cobbler-tests-containers-3.3.3-150400.5.42.5.noarch",
"product": {
"name": "cobbler-tests-containers-3.3.3-150400.5.42.5.noarch",
"product_id": "cobbler-tests-containers-3.3.3-150400.5.42.5.noarch"
}
},
{
"category": "product_version",
"name": "image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"product": {
"name": "image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"product_id": "image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch"
}
},
{
"category": "product_version",
"name": "jose4j-0.5.1-150400.3.9.4.noarch",
"product": {
"name": "jose4j-0.5.1-150400.3.9.4.noarch",
"product_id": "jose4j-0.5.1-150400.3.9.4.noarch"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.3.9-150400.3.15.5.noarch",
"product": {
"name": "mgr-daemon-4.3.9-150400.3.15.5.noarch",
"product_id": "mgr-daemon-4.3.9-150400.3.15.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"product": {
"name": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"product_id": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"product_id": "python3-spacewalk-check-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"product_id": "python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"product_id": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-4.3.27-150400.3.36.5.noarch",
"product": {
"name": "spacecmd-4.3.27-150400.3.36.5.noarch",
"product_id": "spacecmd-4.3.27-150400.3.36.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-app-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-cdn-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-cdn-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-server-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"product_id": "spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-base-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-base-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"product": {
"name": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"product_id": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-check-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "spacewalk-check-4.3.19-150400.3.27.5.noarch",
"product_id": "spacewalk-check-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"product_id": "spacewalk-client-setup-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"product": {
"name": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"product_id": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-config-4.3.13-150400.3.15.5.noarch",
"product": {
"name": "spacewalk-config-4.3.13-150400.3.15.5.noarch",
"product_id": "spacewalk-config-4.3.13-150400.3.15.5.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-dobby-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-dobby-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-dobby-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-html-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-html-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-debug-4.3.38-150400.3.42.6.noarch",
"product": {
"name": "spacewalk-html-debug-4.3.38-150400.3.42.6.noarch",
"product_id": "spacewalk-html-debug-4.3.38-150400.3.42.6.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-java-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-java-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-apidoc-sources-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-java-apidoc-sources-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-java-apidoc-sources-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-java-config-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-java-lib-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"product": {
"name": "spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"product_id": "spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch"
}
},
{
"category": "product_version",
"name": "subscription-matcher-0.37-150400.3.22.4.noarch",
"product": {
"name": "subscription-matcher-0.37-150400.3.22.4.noarch",
"product_id": "subscription-matcher-0.37-150400.3.22.4.noarch"
}
},
{
"category": "product_version",
"name": "supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"product": {
"name": "supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"product_id": "supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-4.3-150400.9.56.4.noarch",
"product": {
"name": "susemanager-docs_en-4.3-150400.9.56.4.noarch",
"product_id": "susemanager-docs_en-4.3-150400.9.56.4.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"product": {
"name": "susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"product_id": "susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-4.3.25-150400.3.39.5.noarch",
"product": {
"name": "susemanager-schema-4.3.25-150400.3.39.5.noarch",
"product_id": "susemanager-schema-4.3.25-150400.3.39.5.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-sanity-4.3.25-150400.3.39.5.noarch",
"product": {
"name": "susemanager-schema-sanity-4.3.25-150400.3.39.5.noarch",
"product_id": "susemanager-schema-sanity-4.3.25-150400.3.39.5.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"product": {
"name": "susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"product_id": "susemanager-schema-utility-4.3.25-150400.3.39.5.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sls-4.3.41-150400.3.47.6.noarch",
"product": {
"name": "susemanager-sls-4.3.41-150400.3.47.6.noarch",
"product_id": "susemanager-sls-4.3.41-150400.3.47.6.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"product": {
"name": "susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"product_id": "susemanager-sync-data-4.3.17-150400.3.25.4.noarch"
}
},
{
"category": "product_version",
"name": "uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"product": {
"name": "uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"product_id": "uyuni-config-modules-4.3.41-150400.3.47.6.noarch"
}
},
{
"category": "product_version",
"name": "uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch",
"product": {
"name": "uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch",
"product_id": "uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"product": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"product_id": "inter-server-sync-0.3.3-150400.3.30.4.ppc64le"
}
},
{
"category": "product_version",
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"product": {
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"product_id": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"product": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"product_id": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le"
}
},
{
"category": "product_version",
"name": "smdba-1.7.13-0.150400.4.12.4.ppc64le",
"product": {
"name": "smdba-1.7.13-0.150400.4.12.4.ppc64le",
"product_id": "smdba-1.7.13-0.150400.4.12.4.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-4.3.35-150400.3.48.6.ppc64le",
"product": {
"name": "susemanager-4.3.35-150400.3.48.6.ppc64le",
"product_id": "susemanager-4.3.35-150400.3.48.6.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"product": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"product_id": "susemanager-tools-4.3.35-150400.3.48.6.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "inter-server-sync-0.3.3-150400.3.30.4.s390x",
"product": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.s390x",
"product_id": "inter-server-sync-0.3.3-150400.3.30.4.s390x"
}
},
{
"category": "product_version",
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"product": {
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"product_id": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.s390x"
}
},
{
"category": "product_version",
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"product": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"product_id": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x"
}
},
{
"category": "product_version",
"name": "smdba-1.7.13-0.150400.4.12.4.s390x",
"product": {
"name": "smdba-1.7.13-0.150400.4.12.4.s390x",
"product_id": "smdba-1.7.13-0.150400.4.12.4.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-4.3.35-150400.3.48.6.s390x",
"product": {
"name": "susemanager-4.3.35-150400.3.48.6.s390x",
"product_id": "susemanager-4.3.35-150400.3.48.6.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.3.35-150400.3.48.6.s390x",
"product": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.s390x",
"product_id": "susemanager-tools-4.3.35-150400.3.48.6.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"product": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"product_id": "inter-server-sync-0.3.3-150400.3.30.4.x86_64"
}
},
{
"category": "product_version",
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"product": {
"name": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"product_id": "python2-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64"
}
},
{
"category": "product_version",
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"product": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"product_id": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64"
}
},
{
"category": "product_version",
"name": "smdba-1.7.13-0.150400.4.12.4.x86_64",
"product": {
"name": "smdba-1.7.13-0.150400.4.12.4.x86_64",
"product_id": "smdba-1.7.13-0.150400.4.12.4.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-4.3.35-150400.3.48.6.x86_64",
"product": {
"name": "susemanager-4.3.35-150400.3.48.6.x86_64",
"product_id": "susemanager-4.3.35-150400.3.48.6.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"product": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"product_id": "susemanager-tools-4.3.35-150400.3.48.6.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Proxy Module 4.3",
"product": {
"name": "SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-proxy:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server Module 4.3",
"product": {
"name": "SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-server:4.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.3.9-150400.3.15.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:mgr-daemon-4.3.9-150400.3.15.5.noarch"
},
"product_reference": "mgr-daemon-4.3.9-150400.3.15.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
},
"product_reference": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-check-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:python3-spacewalk-check-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64 as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64"
},
"product_reference": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.3.27-150400.3.36.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch"
},
"product_reference": "spacecmd-4.3.27-150400.3.36.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
},
"product_reference": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-check-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-check-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "spacewalk-check-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-setup-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-client-setup-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Proxy Module 4.3",
"product_id": "SUSE Manager Proxy Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cobbler-3.3.3-150400.5.42.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:cobbler-3.3.3-150400.5.42.5.noarch"
},
"product_reference": "cobbler-3.3.3-150400.5.42.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch"
},
"product_reference": "image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.ppc64le as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.ppc64le"
},
"product_reference": "inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.s390x as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.s390x"
},
"product_reference": "inter-server-sync-0.3.3-150400.3.30.4.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.3.3-150400.3.30.4.x86_64 as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.x86_64"
},
"product_reference": "inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jose4j-0.5.1-150400.3.9.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:jose4j-0.5.1-150400.3.9.4.noarch"
},
"product_reference": "jose4j-0.5.1-150400.3.9.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
},
"product_reference": "python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le"
},
"product_reference": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x"
},
"product_reference": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64 as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64"
},
"product_reference": "python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.13-0.150400.4.12.4.ppc64le as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.ppc64le"
},
"product_reference": "smdba-1.7.13-0.150400.4.12.4.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.13-0.150400.4.12.4.s390x as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.s390x"
},
"product_reference": "smdba-1.7.13-0.150400.4.12.4.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.13-0.150400.4.12.4.x86_64 as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.x86_64"
},
"product_reference": "smdba-1.7.13-0.150400.4.12.4.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.3.27-150400.3.36.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch"
},
"product_reference": "spacecmd-4.3.27-150400.3.36.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-app-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-server-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-base-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-base-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch"
},
"product_reference": "spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch"
},
"product_reference": "spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-config-4.3.13-150400.3.15.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-config-4.3.13-150400.3.15.5.noarch"
},
"product_reference": "spacewalk-config-4.3.13-150400.3.15.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-4.3.38-150400.3.42.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-html-4.3.38-150400.3.42.6.noarch"
},
"product_reference": "spacewalk-html-4.3.38-150400.3.42.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-4.3.73-150400.3.79.1.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-java-4.3.73-150400.3.79.1.noarch"
},
"product_reference": "spacewalk-java-4.3.73-150400.3.79.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-4.3.73-150400.3.79.1.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-java-config-4.3.73-150400.3.79.1.noarch"
},
"product_reference": "spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-4.3.73-150400.3.79.1.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-java-lib-4.3.73-150400.3.79.1.noarch"
},
"product_reference": "spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch"
},
"product_reference": "spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch"
},
"product_reference": "spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subscription-matcher-0.37-150400.3.22.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:subscription-matcher-0.37-150400.3.22.4.noarch"
},
"product_reference": "subscription-matcher-0.37-150400.3.22.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch"
},
"product_reference": "supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.3.35-150400.3.48.6.ppc64le as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.ppc64le"
},
"product_reference": "susemanager-4.3.35-150400.3.48.6.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.3.35-150400.3.48.6.s390x as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.s390x"
},
"product_reference": "susemanager-4.3.35-150400.3.48.6.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.3.35-150400.3.48.6.x86_64 as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.x86_64"
},
"product_reference": "susemanager-4.3.35-150400.3.48.6.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-4.3-150400.9.56.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-docs_en-4.3-150400.9.56.4.noarch"
},
"product_reference": "susemanager-docs_en-4.3-150400.9.56.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch"
},
"product_reference": "susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-4.3.25-150400.3.39.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-schema-4.3.25-150400.3.39.5.noarch"
},
"product_reference": "susemanager-schema-4.3.25-150400.3.39.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-utility-4.3.25-150400.3.39.5.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-schema-utility-4.3.25-150400.3.39.5.noarch"
},
"product_reference": "susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sls-4.3.41-150400.3.47.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-sls-4.3.41-150400.3.47.6.noarch"
},
"product_reference": "susemanager-sls-4.3.41-150400.3.47.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sync-data-4.3.17-150400.3.25.4.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-sync-data-4.3.17-150400.3.25.4.noarch"
},
"product_reference": "susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.ppc64le as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.ppc64le"
},
"product_reference": "susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.s390x as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.s390x"
},
"product_reference": "susemanager-tools-4.3.35-150400.3.48.6.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.3.35-150400.3.48.6.x86_64 as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.x86_64"
},
"product_reference": "susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uyuni-config-modules-4.3.41-150400.3.47.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:uyuni-config-modules-4.3.41-150400.3.47.6.noarch"
},
"product_reference": "uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch as component of SUSE Manager Server Module 4.3",
"product_id": "SUSE Manager Server Module 4.3:uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch"
},
"product_reference": "uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-51775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51775"
}
],
"notes": [
{
"category": "general",
"text": "The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy Module 4.3:mgr-daemon-4.3.9-150400.3.15.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Proxy Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:cobbler-3.3.3-150400.5.42.5.noarch",
"SUSE Manager Server Module 4.3:image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.s390x",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"SUSE Manager Server Module 4.3:jose4j-0.5.1-150400.3.9.4.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.ppc64le",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.s390x",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.x86_64",
"SUSE Manager Server Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-config-4.3.13-150400.3.15.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-html-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:subscription-matcher-0.37-150400.3.22.4.noarch",
"SUSE Manager Server Module 4.3:supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:susemanager-docs_en-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-sls-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51775",
"url": "https://www.suse.com/security/cve/CVE-2023-51775"
},
{
"category": "external",
"summary": "SUSE Bug 1220726 for CVE-2023-51775",
"url": "https://bugzilla.suse.com/1220726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy Module 4.3:mgr-daemon-4.3.9-150400.3.15.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Proxy Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:cobbler-3.3.3-150400.5.42.5.noarch",
"SUSE Manager Server Module 4.3:image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.s390x",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"SUSE Manager Server Module 4.3:jose4j-0.5.1-150400.3.9.4.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.ppc64le",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.s390x",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.x86_64",
"SUSE Manager Server Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-config-4.3.13-150400.3.15.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-html-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:subscription-matcher-0.37-150400.3.22.4.noarch",
"SUSE Manager Server Module 4.3:supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:susemanager-docs_en-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-sls-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Manager Proxy Module 4.3:mgr-daemon-4.3.9-150400.3.15.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Proxy Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-check-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-setup-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Proxy Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:cobbler-3.3.3-150400.5.42.5.noarch",
"SUSE Manager Server Module 4.3:image-sync-formula-0.1.1711646883.4a44375-150400.3.18.4.noarch",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.ppc64le",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.s390x",
"SUSE Manager Server Module 4.3:inter-server-sync-0.3.3-150400.3.30.4.x86_64",
"SUSE Manager Server Module 4.3:jose4j-0.5.1-150400.3.9.4.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:python3-spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.ppc64le",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.s390x",
"SUSE Manager Server Module 4.3:python3-uyuni-common-libs-4.3.10-150400.3.18.4.x86_64",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.ppc64le",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.s390x",
"SUSE Manager Server Module 4.3:smdba-1.7.13-0.150400.4.12.4.x86_64",
"SUSE Manager Server Module 4.3:spacecmd-4.3.27-150400.3.36.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-app-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-applet-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-iss-export-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-server-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-tools-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc-4.3.28-150400.3.41.7.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-base-minimal-config-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-certs-tools-4.3.23-150400.3.28.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-client-tools-4.3.19-150400.3.27.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-config-4.3.13-150400.3.15.5.noarch",
"SUSE Manager Server Module 4.3:spacewalk-html-4.3.38-150400.3.42.6.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-config-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-lib-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-java-postgresql-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:spacewalk-taskomatic-4.3.73-150400.3.79.1.noarch",
"SUSE Manager Server Module 4.3:subscription-matcher-0.37-150400.3.22.4.noarch",
"SUSE Manager Server Module 4.3:supportutils-plugin-susemanager-4.3.11-150400.3.21.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:susemanager-docs_en-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-docs_en-pdf-4.3-150400.9.56.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-schema-utility-4.3.25-150400.3.39.5.noarch",
"SUSE Manager Server Module 4.3:susemanager-sls-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:susemanager-sync-data-4.3.17-150400.3.25.4.noarch",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.ppc64le",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.s390x",
"SUSE Manager Server Module 4.3:susemanager-tools-4.3.35-150400.3.48.6.x86_64",
"SUSE Manager Server Module 4.3:uyuni-config-modules-4.3.41-150400.3.47.6.noarch",
"SUSE Manager Server Module 4.3:uyuni-reportdb-schema-4.3.10-150400.3.15.6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-06T09:46:03Z",
"details": "important"
}
],
"title": "CVE-2023-51775"
}
]
}
SUSE-SU-2024:1532-1
Vulnerability from csaf_suse - Published: 2024-05-06 09:55 - Updated: 2024-05-06 09:55Summary
Security update for SUSE Manager Server 4.3
Severity
Important
Notes
Title of the patch: Security update for SUSE Manager Server 4.3
Description of the patch:
This update fixes the following issues:
release-notes-susemanager:
- Update to SUSE Manager 4.3.12
* Monitoring: Node exporter upgraded to 1.7.0
* Automatic migration from Salt 3000 to the Salt Bundle
* New update-salt recurring state
* uyuni-proxy-systemd-services package has been added to proxy
channel
* New Errata getRelevantErrata API endpoint
* CVEs fixed:
2023-51775
* Bugs mentioned:
bsc#1170848, bsc#1208572, bsc#1214340, bsc#1214387, bsc#1216085
bsc#1217204, bsc#1217874, bsc#1218764, bsc#1218805, bsc#1218931
bsc#1218957, bsc#1219061, bsc#1219233, bsc#1219634, bsc#1219875
bsc#1220101, bsc#1220169, bsc#1220194, bsc#1220221, bsc#1220376
bsc#1220705, bsc#1220726, bsc#1220903, bsc#1220980, bsc#1221111
bsc#1221182, bsc#1221279, bsc#1221465, bsc#1221571, bsc#1221784
bsc#1221922, bsc#1222110, bsc#1222347
Patchnames: SUSE-2024-1532,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1532,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1532
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Proxy 4.3:release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.3:release-notes-susemanager-4.3.12-150400.3.108.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 4.3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\nrelease-notes-susemanager:\n\n- Update to SUSE Manager 4.3.12\n * Monitoring: Node exporter upgraded to 1.7.0\n * Automatic migration from Salt 3000 to the Salt Bundle\n * New update-salt recurring state\n * uyuni-proxy-systemd-services package has been added to proxy\n channel\n * New Errata getRelevantErrata API endpoint\n * CVEs fixed:\n 2023-51775\n * Bugs mentioned: \n bsc#1170848, bsc#1208572, bsc#1214340, bsc#1214387, bsc#1216085\n bsc#1217204, bsc#1217874, bsc#1218764, bsc#1218805, bsc#1218931\n bsc#1218957, bsc#1219061, bsc#1219233, bsc#1219634, bsc#1219875\n bsc#1220101, bsc#1220169, bsc#1220194, bsc#1220221, bsc#1220376\n bsc#1220705, bsc#1220726, bsc#1220903, bsc#1220980, bsc#1221111\n bsc#1221182, bsc#1221279, bsc#1221465, bsc#1221571, bsc#1221784\n bsc#1221922, bsc#1222110, bsc#1222347\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1532,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1532,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1532",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1532-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1532-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241532-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1532-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018453.html"
},
{
"category": "self",
"summary": "SUSE Bug 1170848",
"url": "https://bugzilla.suse.com/1170848"
},
{
"category": "self",
"summary": "SUSE Bug 1208572",
"url": "https://bugzilla.suse.com/1208572"
},
{
"category": "self",
"summary": "SUSE Bug 1214340",
"url": "https://bugzilla.suse.com/1214340"
},
{
"category": "self",
"summary": "SUSE Bug 1214387",
"url": "https://bugzilla.suse.com/1214387"
},
{
"category": "self",
"summary": "SUSE Bug 1216085",
"url": "https://bugzilla.suse.com/1216085"
},
{
"category": "self",
"summary": "SUSE Bug 1217204",
"url": "https://bugzilla.suse.com/1217204"
},
{
"category": "self",
"summary": "SUSE Bug 1217874",
"url": "https://bugzilla.suse.com/1217874"
},
{
"category": "self",
"summary": "SUSE Bug 1218764",
"url": "https://bugzilla.suse.com/1218764"
},
{
"category": "self",
"summary": "SUSE Bug 1218805",
"url": "https://bugzilla.suse.com/1218805"
},
{
"category": "self",
"summary": "SUSE Bug 1218931",
"url": "https://bugzilla.suse.com/1218931"
},
{
"category": "self",
"summary": "SUSE Bug 1218957",
"url": "https://bugzilla.suse.com/1218957"
},
{
"category": "self",
"summary": "SUSE Bug 1219061",
"url": "https://bugzilla.suse.com/1219061"
},
{
"category": "self",
"summary": "SUSE Bug 1219233",
"url": "https://bugzilla.suse.com/1219233"
},
{
"category": "self",
"summary": "SUSE Bug 1219634",
"url": "https://bugzilla.suse.com/1219634"
},
{
"category": "self",
"summary": "SUSE Bug 1219875",
"url": "https://bugzilla.suse.com/1219875"
},
{
"category": "self",
"summary": "SUSE Bug 1220101",
"url": "https://bugzilla.suse.com/1220101"
},
{
"category": "self",
"summary": "SUSE Bug 1220169",
"url": "https://bugzilla.suse.com/1220169"
},
{
"category": "self",
"summary": "SUSE Bug 1220194",
"url": "https://bugzilla.suse.com/1220194"
},
{
"category": "self",
"summary": "SUSE Bug 1220221",
"url": "https://bugzilla.suse.com/1220221"
},
{
"category": "self",
"summary": "SUSE Bug 1220376",
"url": "https://bugzilla.suse.com/1220376"
},
{
"category": "self",
"summary": "SUSE Bug 1220705",
"url": "https://bugzilla.suse.com/1220705"
},
{
"category": "self",
"summary": "SUSE Bug 1220726",
"url": "https://bugzilla.suse.com/1220726"
},
{
"category": "self",
"summary": "SUSE Bug 1220903",
"url": "https://bugzilla.suse.com/1220903"
},
{
"category": "self",
"summary": "SUSE Bug 1220980",
"url": "https://bugzilla.suse.com/1220980"
},
{
"category": "self",
"summary": "SUSE Bug 1221111",
"url": "https://bugzilla.suse.com/1221111"
},
{
"category": "self",
"summary": "SUSE Bug 1221182",
"url": "https://bugzilla.suse.com/1221182"
},
{
"category": "self",
"summary": "SUSE Bug 1221279",
"url": "https://bugzilla.suse.com/1221279"
},
{
"category": "self",
"summary": "SUSE Bug 1221465",
"url": "https://bugzilla.suse.com/1221465"
},
{
"category": "self",
"summary": "SUSE Bug 1221571",
"url": "https://bugzilla.suse.com/1221571"
},
{
"category": "self",
"summary": "SUSE Bug 1221784",
"url": "https://bugzilla.suse.com/1221784"
},
{
"category": "self",
"summary": "SUSE Bug 1221922",
"url": "https://bugzilla.suse.com/1221922"
},
{
"category": "self",
"summary": "SUSE Bug 1222110",
"url": "https://bugzilla.suse.com/1222110"
},
{
"category": "self",
"summary": "SUSE Bug 1222347",
"url": "https://bugzilla.suse.com/1222347"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51775 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51775/"
}
],
"title": "Security update for SUSE Manager Server 4.3",
"tracking": {
"current_release_date": "2024-05-06T09:55:29Z",
"generator": {
"date": "2024-05-06T09:55:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1532-1",
"initial_release_date": "2024-05-06T09:55:29Z",
"revision_history": [
{
"date": "2024-05-06T09:55:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "release-notes-susemanager-4.3.12-150400.3.108.2.noarch",
"product": {
"name": "release-notes-susemanager-4.3.12-150400.3.108.2.noarch",
"product_id": "release-notes-susemanager-4.3.12-150400.3.108.2.noarch"
}
},
{
"category": "product_version",
"name": "release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"product": {
"name": "release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"product_id": "release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.3",
"product": {
"name": "SUSE Manager Proxy 4.3",
"product_id": "SUSE Manager Proxy 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.3",
"product": {
"name": "SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch as component of SUSE Manager Proxy 4.3",
"product_id": "SUSE Manager Proxy 4.3:release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch"
},
"product_reference": "release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-4.3.12-150400.3.108.2.noarch as component of SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3:release-notes-susemanager-4.3.12-150400.3.108.2.noarch"
},
"product_reference": "release-notes-susemanager-4.3.12-150400.3.108.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-51775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51775"
}
],
"notes": [
{
"category": "general",
"text": "The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy 4.3:release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"SUSE Manager Server 4.3:release-notes-susemanager-4.3.12-150400.3.108.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51775",
"url": "https://www.suse.com/security/cve/CVE-2023-51775"
},
{
"category": "external",
"summary": "SUSE Bug 1220726 for CVE-2023-51775",
"url": "https://bugzilla.suse.com/1220726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy 4.3:release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"SUSE Manager Server 4.3:release-notes-susemanager-4.3.12-150400.3.108.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Manager Proxy 4.3:release-notes-susemanager-proxy-4.3.12-150400.3.82.3.noarch",
"SUSE Manager Server 4.3:release-notes-susemanager-4.3.12-150400.3.108.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-06T09:55:29Z",
"details": "important"
}
],
"title": "CVE-2023-51775"
}
]
}
WID-SEC-W-2024-0797
Vulnerability from csaf_certbund - Published: 2024-04-04 22:00 - Updated: 2024-11-06 23:00Summary
IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM WebSphere Application Server ist ein J2EE-Applikationsserver.
Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM WebSphere Application Server ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - Linux
- MacOS X
- Sonstiges
- Windows
Es besteht eine Schwachstelle in IBM WebSphere Application Server. Dieser Fehler besteht in der Komponente jose4j aufgrund einer unsachgemäßen Eingabevalidierung. Durch das Senden eines speziell gestalteten p2c-Wertes kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
Affected products
Known affected
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM WebSphere Application Server Liberty
IBM / WebSphere Application Server
|
cpe:/a:ibm:websphere_application_server:liberty
|
Liberty | |
|
IBM TXSeries for Multiplatforms 8.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.1
|
for Multiplatforms 8.1 | |
|
IBM TXSeries for Multiplatforms 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
for Multiplatforms 8.2 | |
|
IBM TXSeries for Multiplatforms 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
for Multiplatforms 9.1 | |
|
HCL Commerce 9.1.0-9.1.15
HCL / Commerce
|
cpe:/a:hcltechsw:commerce:9.1.0_-_9.1.15
|
9.1.0-9.1.15 | |
|
HCL Commerce 9.0-9.0.1.21
HCL / Commerce
|
cpe:/a:hcltechsw:commerce:9.0_-_9.0.1.21
|
9.0-9.0.1.21 | |
|
HCL BigFix Compliance
HCL / BigFix
|
cpe:/a:hcltech:bigfix:compliance
|
Compliance | |
|
IBM Rational ClearQuest
IBM
|
cpe:/a:ibm:rational_clearquest:-
|
— | |
|
IBM Tivoli Netcool/OMNIbus 8.1.0
IBM / Tivoli Netcool/OMNIbus
|
cpe:/a:ibm:tivoli_netcool%2fomnibus:8.1.0
|
8.1.0 | |
|
HCL Commerce 8.x
HCL / Commerce
|
cpe:/a:hcltechsw:commerce:8.x
|
8.x | |
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 | |
|
IBM Maximo Asset Management 7.6.1.2
IBM / Maximo Asset Management
|
cpe:/a:ibm:maximo_asset_management:7.6.1.2
|
7.6.1.2 | |
|
IBM Tivoli Monitoring 6.3.0.7
IBM / Tivoli Monitoring
|
cpe:/a:ibm:tivoli_monitoring:6.3.0.7
|
6.3.0.7 | |
|
IBM MQ
IBM / MQ
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Maximo Asset Management 7.6.1.3
IBM / Maximo Asset Management
|
cpe:/a:ibm:maximo_asset_management:7.6.1.3
|
7.6.1.3 | |
|
IBM Rational ClearCase 10.0.0
IBM / Rational ClearCase
|
cpe:/a:ibm:rational_clearcase:10.0.0
|
10.0.0 | |
|
IBM MQ 9.1.0
IBM / MQ
|
cpe:/a:ibm:mq:9.1.0
|
9.1.0 | |
|
IBM Rational ClearCase 9.1
IBM / Rational ClearCase
|
cpe:/a:ibm:rational_clearcase:9.1
|
9.1 | |
|
IBM MQ 9.3.0
IBM / MQ
|
cpe:/a:ibm:mq:9.3.0
|
9.3.0 | |
|
IBM Business Automation Workflow
IBM
|
cpe:/a:ibm:business_automation_workflow:-
|
— | |
|
IBM MQ 9.2.0
IBM / MQ
|
cpe:/a:ibm:mq:9.2.0
|
9.2.0 | |
|
IBM WebSphere Application Server <9.0.5.20
IBM / WebSphere Application Server
|
<9.0.5.20 | ||
|
IBM WebSphere Application Server <8.5.5.26
IBM / WebSphere Application Server
|
<8.5.5.26 | ||
|
IBM Tivoli Key Lifecycle Manager
IBM
|
cpe:/a:ibm:tivoli_key_lifecycle_manager:-
|
— | |
|
IBM WebSphere Application Server Liberty <24.0.0.4
IBM / WebSphere Application Server
|
Liberty <24.0.0.4 | ||
|
IBM WebSphere Service Registry and Repository 8.5
IBM / WebSphere Service Registry and Repository
|
cpe:/a:ibm:websphere_service_registry_and_repository:8.5
|
8.5 |
References
19 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM WebSphere Application Server ist ein J2EE-Applikationsserver.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM WebSphere Application Server ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- Sonstiges\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0797 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0797.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0797 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0797"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-04-04",
"url": "https://www.ibm.com/support/pages/node/7145942"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7147914 vom 2024-04-10",
"url": "https://www.ibm.com/support/pages/node/7147914"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7148335 vom 2024-04-16",
"url": "https://www.ibm.com/support/pages/node/7148335"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7148747 vom 2024-04-19",
"url": "https://www.ibm.com/support/pages/node/7148747"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7149055 vom 2024-04-22",
"url": "https://www.ibm.com/support/pages/node/7149055"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-04-26",
"url": "https://www.ibm.com/support/pages/node/7149578"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7150669 vom 2024-05-09",
"url": "https://www.ibm.com/support/pages/node/7150669"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7155114 vom 2024-05-29",
"url": "https://www.ibm.com/support/pages/node/7155114"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7156370 vom 2024-06-04",
"url": "https://www.ibm.com/support/pages/node/7156370"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7157976 vom 2024-06-26",
"url": "https://www.ibm.com/support/pages/node/7157976"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158959 vom 2024-06-27",
"url": "https://www.ibm.com/support/pages/node/7158959"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159010 vom 2024-06-27",
"url": "https://www.ibm.com/support/pages/node/7159010"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159714 vom 2024-07-05",
"url": "https://www.ibm.com/support/pages/node/7159714"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7160132 vom 2024-07-12",
"url": "https://www.ibm.com/support/pages/node/7160132"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7164812 vom 2024-08-09",
"url": "https://www.ibm.com/support/pages/node/7164812"
},
{
"category": "external",
"summary": "HCL Security Advisory",
"url": "https://support.hcl-software.com/csm?id=kb_article\u0026sysparm_article=KB0115052"
},
{
"category": "external",
"summary": "HCL BigFix Advisory vom 2024-11-07",
"url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=c054a21093b5d2500dddf87d1dba102d"
}
],
"source_lang": "en-US",
"title": "IBM WebSphere Application Server: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-11-06T23:00:00.000+00:00",
"generator": {
"date": "2024-11-07T10:39:49.876+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-0797",
"initial_release_date": "2024-04-04T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-04-04T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-04-09T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-04-15T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-04-21T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-04-22T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-04-25T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-09T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-28T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-06-04T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-06-26T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-06-27T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-07-07T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-07-11T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-08-08T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-11-03T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "16"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Compliance",
"product": {
"name": "HCL BigFix Compliance",
"product_id": "T038823",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:compliance"
}
}
}
],
"category": "product_name",
"name": "BigFix"
},
{
"branches": [
{
"category": "product_version",
"name": "8.x",
"product": {
"name": "HCL Commerce 8.x",
"product_id": "T038745",
"product_identification_helper": {
"cpe": "cpe:/a:hcltechsw:commerce:8.x"
}
}
},
{
"category": "product_version",
"name": "9.0-9.0.1.21",
"product": {
"name": "HCL Commerce 9.0-9.0.1.21",
"product_id": "T038746",
"product_identification_helper": {
"cpe": "cpe:/a:hcltechsw:commerce:9.0_-_9.0.1.21"
}
}
},
{
"category": "product_version",
"name": "9.1.0-9.1.15",
"product": {
"name": "HCL Commerce 9.1.0-9.1.15",
"product_id": "T038747",
"product_identification_helper": {
"cpe": "cpe:/a:hcltechsw:commerce:9.1.0_-_9.1.15"
}
}
}
],
"category": "product_name",
"name": "Commerce"
}
],
"category": "vendor",
"name": "HCL"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM Business Automation Workflow",
"product": {
"name": "IBM Business Automation Workflow",
"product_id": "T019704",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:business_automation_workflow:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "9.2",
"product": {
"name": "IBM License Metric Tool 9.2",
"product_id": "T031605",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:license_metric_tool:9.2"
}
}
}
],
"category": "product_name",
"name": "License Metric Tool"
},
{
"branches": [
{
"category": "product_version",
"name": "9.1.0",
"product": {
"name": "IBM MQ 9.1.0",
"product_id": "T021105",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:9.1.0"
}
}
},
{
"category": "product_version",
"name": "9.2.0",
"product": {
"name": "IBM MQ 9.2.0",
"product_id": "T021106",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:9.2.0"
}
}
},
{
"category": "product_name",
"name": "IBM MQ",
"product": {
"name": "IBM MQ",
"product_id": "T021398",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:-"
}
}
},
{
"category": "product_version",
"name": "9.3.0",
"product": {
"name": "IBM MQ 9.3.0",
"product_id": "T026459",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:9.3.0"
}
}
}
],
"category": "product_name",
"name": "MQ"
},
{
"branches": [
{
"category": "product_version",
"name": "7.6.1.3",
"product": {
"name": "IBM Maximo Asset Management 7.6.1.3",
"product_id": "1234217",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:maximo_asset_management:7.6.1.3"
}
}
},
{
"category": "product_version",
"name": "7.6.1.2",
"product": {
"name": "IBM Maximo Asset Management 7.6.1.2",
"product_id": "812526",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:maximo_asset_management:7.6.1.2"
}
}
}
],
"category": "product_name",
"name": "Maximo Asset Management"
},
{
"branches": [
{
"category": "product_version",
"name": "9.1",
"product": {
"name": "IBM Rational ClearCase 9.1",
"product_id": "T021423",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearcase:9.1"
}
}
},
{
"category": "product_version",
"name": "10.0.0",
"product": {
"name": "IBM Rational ClearCase 10.0.0",
"product_id": "T026520",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearcase:10.0.0"
}
}
}
],
"category": "product_name",
"name": "Rational ClearCase"
},
{
"category": "product_name",
"name": "IBM Rational ClearQuest",
"product": {
"name": "IBM Rational ClearQuest",
"product_id": "5168",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_clearquest:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "for Multiplatforms 9.1",
"product": {
"name": "IBM TXSeries for Multiplatforms 9.1",
"product_id": "T015903",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:txseries:for_multiplatforms_9.1"
}
}
},
{
"category": "product_version",
"name": "for Multiplatforms 8.2",
"product": {
"name": "IBM TXSeries for Multiplatforms 8.2",
"product_id": "T015904",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:txseries:for_multiplatforms_8.2"
}
}
},
{
"category": "product_version",
"name": "for Multiplatforms 8.1",
"product": {
"name": "IBM TXSeries for Multiplatforms 8.1",
"product_id": "T015905",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:txseries:for_multiplatforms_8.1"
}
}
}
],
"category": "product_name",
"name": "TXSeries"
},
{
"category": "product_name",
"name": "IBM Tivoli Key Lifecycle Manager",
"product": {
"name": "IBM Tivoli Key Lifecycle Manager",
"product_id": "T026238",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:tivoli_key_lifecycle_manager:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "6.3.0.7",
"product": {
"name": "IBM Tivoli Monitoring 6.3.0.7",
"product_id": "342008",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:tivoli_monitoring:6.3.0.7"
}
}
}
],
"category": "product_name",
"name": "Tivoli Monitoring"
},
{
"branches": [
{
"category": "product_version",
"name": "8.1.0",
"product": {
"name": "IBM Tivoli Netcool/OMNIbus 8.1.0",
"product_id": "700367",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:tivoli_netcool%2fomnibus:8.1.0"
}
}
}
],
"category": "product_name",
"name": "Tivoli Netcool/OMNIbus"
},
{
"branches": [
{
"category": "product_version",
"name": "Liberty",
"product": {
"name": "IBM WebSphere Application Server Liberty",
"product_id": "T008337",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_application_server:liberty"
}
}
},
{
"category": "product_version_range",
"name": "Liberty \u003c24.0.0.4",
"product": {
"name": "IBM WebSphere Application Server Liberty \u003c24.0.0.4",
"product_id": "T033915"
}
},
{
"category": "product_version",
"name": "Liberty 24.0.0.4",
"product": {
"name": "IBM WebSphere Application Server Liberty 24.0.0.4",
"product_id": "T033915-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_application_server:liberty__24.0.0.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.0.5.20",
"product": {
"name": "IBM WebSphere Application Server \u003c9.0.5.20",
"product_id": "T033916"
}
},
{
"category": "product_version",
"name": "9.0.5.20",
"product": {
"name": "IBM WebSphere Application Server 9.0.5.20",
"product_id": "T033916-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_application_server:9.0.5.20"
}
}
},
{
"category": "product_version_range",
"name": "\u003c8.5.5.26",
"product": {
"name": "IBM WebSphere Application Server \u003c8.5.5.26",
"product_id": "T033917"
}
},
{
"category": "product_version",
"name": "8.5.5.26",
"product": {
"name": "IBM WebSphere Application Server 8.5.5.26",
"product_id": "T033917-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_application_server:8.5.5.26"
}
}
}
],
"category": "product_name",
"name": "WebSphere Application Server"
},
{
"branches": [
{
"category": "product_version",
"name": "8.5",
"product": {
"name": "IBM WebSphere Service Registry and Repository 8.5",
"product_id": "306235",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:websphere_service_registry_and_repository:8.5"
}
}
}
],
"category": "product_name",
"name": "WebSphere Service Registry and Repository"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-51775",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM WebSphere Application Server. Dieser Fehler besteht in der Komponente jose4j aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung. Durch das Senden eines speziell gestalteten p2c-Wertes kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"product_status": {
"known_affected": [
"T008337",
"T015905",
"T015904",
"T015903",
"T038747",
"T038746",
"T038823",
"5168",
"700367",
"T038745",
"T031605",
"812526",
"342008",
"T021398",
"1234217",
"T026520",
"T021105",
"T021423",
"T026459",
"T019704",
"T021106",
"T033916",
"T033917",
"T026238",
"T033915",
"306235"
]
},
"release_date": "2024-04-04T22:00:00.000+00:00",
"title": "CVE-2023-51775"
}
]
}
WID-SEC-W-2024-0869
Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2025-09-10 22:00Summary
Oracle Communications: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Windows
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 23.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.0
|
23.2.0 | |
|
Oracle Communications 14.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:14.0.0.0.0
|
14.0.0.0.0 | |
|
Oracle Communications 23.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.0
|
23.3.0 | |
|
Oracle Communications 23.3.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.2
|
23.3.2 | |
|
Oracle Communications 9.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.0.0.0
|
9.0.0.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Oracle Communications 24.1.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0.0.0
|
24.1.0.0.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 23.2.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.2.2
|
23.2.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 23.3.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.3.1
|
23.3.1 | |
|
Oracle Communications 9.1.1.7.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.1.1.7.0
|
9.1.1.7.0 | |
|
Oracle Communications 5.0
Oracle / Communications
|
cpe:/a:oracle:communications:5.0
|
5 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 22.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:22.4.0
|
22.4.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=9.0.2
Oracle / Communications
|
<=9.0.2 | ||
|
Oracle Communications <=7.2.1.0.0
Oracle / Communications
|
<=7.2.1.0.0 | ||
|
Oracle Communications <=23.4.2
Oracle / Communications
|
<=23.4.2 |
References
8 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Communications umfasst branchenspezifische L\u00f6sungen f\u00fcr die Telekommunikationsbranche.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0869 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0869.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0869 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0869"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Communications vom 2024-04-16",
"url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixCGBU"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1878 vom 2024-04-18",
"url": "https://access.redhat.com/errata/RHSA-2024:1878"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202405-01 vom 2024-05-04",
"url": "https://security.gentoo.org/glsa/202405-01"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7987 vom 2024-10-10",
"url": "https://access.redhat.com/errata/RHSA-2024:7987"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX24-017 vom 2024-11-21",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2024/11/Xerox-Security-Bulletin-XRX24-017-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-15608 vom 2025-09-11",
"url": "https://linux.oracle.com/errata/ELSA-2025-15608.html"
}
],
"source_lang": "en-US",
"title": "Oracle Communications: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-09-10T22:00:00.000+00:00",
"generator": {
"date": "2025-09-11T08:26:12.211+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2024-0869",
"initial_release_date": "2024-04-16T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-04-16T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-04-17T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-05T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Gentoo aufgenommen"
},
{
"date": "2024-10-10T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-21T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von XEROX aufgenommen"
},
{
"date": "2025-09-10T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Oracle Linux aufgenommen"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "5",
"product": {
"name": "Oracle Communications 5.0",
"product_id": "T021645",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:5.0"
}
}
},
{
"category": "product_version",
"name": "22.4.0",
"product": {
"name": "Oracle Communications 22.4.0",
"product_id": "T024981",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:22.4.0"
}
}
},
{
"category": "product_version",
"name": "23.1.0",
"product": {
"name": "Oracle Communications 23.1.0",
"product_id": "T027326",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.1.0"
}
}
},
{
"category": "product_version",
"name": "23.2.0",
"product": {
"name": "Oracle Communications 23.2.0",
"product_id": "T028682",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.2.0"
}
}
},
{
"category": "product_version",
"name": "5.1",
"product": {
"name": "Oracle Communications 5.1",
"product_id": "T028684",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:5.1"
}
}
},
{
"category": "product_version",
"name": "23.2.2",
"product": {
"name": "Oracle Communications 23.2.2",
"product_id": "T030583",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.2.2"
}
}
},
{
"category": "product_version",
"name": "23.3.0",
"product": {
"name": "Oracle Communications 23.3.0",
"product_id": "T030586",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.3.0"
}
}
},
{
"category": "product_version",
"name": "9.0.0.0",
"product": {
"name": "Oracle Communications 9.0.0.0",
"product_id": "T030589",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:9.0.0.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=7.2.1.0.0",
"product": {
"name": "Oracle Communications \u003c=7.2.1.0.0",
"product_id": "T030593"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.2.1.0.0",
"product": {
"name": "Oracle Communications \u003c=7.2.1.0.0",
"product_id": "T030593-fixed"
}
},
{
"category": "product_version_range",
"name": "\u003c=9.0.2",
"product": {
"name": "Oracle Communications \u003c=9.0.2",
"product_id": "T030595"
}
},
{
"category": "product_version_range",
"name": "\u003c=9.0.2",
"product": {
"name": "Oracle Communications \u003c=9.0.2",
"product_id": "T030595-fixed"
}
},
{
"category": "product_version",
"name": "23.3.1",
"product": {
"name": "Oracle Communications 23.3.1",
"product_id": "T032088",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.3.1"
}
}
},
{
"category": "product_version",
"name": "23.4.0",
"product": {
"name": "Oracle Communications 23.4.0",
"product_id": "T032091",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.4.0"
}
}
},
{
"category": "product_version",
"name": "23.4.1",
"product": {
"name": "Oracle Communications 23.4.1",
"product_id": "T034143",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.4.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.2",
"product": {
"name": "Oracle Communications \u003c=23.4.2",
"product_id": "T034144"
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.2",
"product": {
"name": "Oracle Communications \u003c=23.4.2",
"product_id": "T034144-fixed"
}
},
{
"category": "product_version",
"name": "24.1.0",
"product": {
"name": "Oracle Communications 24.1.0",
"product_id": "T034145",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:24.1.0"
}
}
},
{
"category": "product_version",
"name": "5.2",
"product": {
"name": "Oracle Communications 5.2",
"product_id": "T034146",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:5.2"
}
}
},
{
"category": "product_version",
"name": "24.1.0.0.0",
"product": {
"name": "Oracle Communications 24.1.0.0.0",
"product_id": "T034147",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:24.1.0.0.0"
}
}
},
{
"category": "product_version",
"name": "23.3.2",
"product": {
"name": "Oracle Communications 23.3.2",
"product_id": "T034148",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.3.2"
}
}
},
{
"category": "product_version",
"name": "14.0.0.0.0",
"product": {
"name": "Oracle Communications 14.0.0.0.0",
"product_id": "T034149",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:14.0.0.0.0"
}
}
},
{
"category": "product_version",
"name": "9.1.1.7.0",
"product": {
"name": "Oracle Communications 9.1.1.7.0",
"product_id": "T034150",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:9.1.1.7.0"
}
}
}
],
"category": "product_name",
"name": "Communications"
},
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "v9",
"product": {
"name": "Xerox FreeFlow Print Server v9",
"product_id": "T015632",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9"
}
}
}
],
"category": "product_name",
"name": "FreeFlow Print Server"
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-40152",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2022-40152"
},
{
"cve": "CVE-2022-40896",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2022-40896"
},
{
"cve": "CVE-2022-45688",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2022-45688"
},
{
"cve": "CVE-2023-2283",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-2283"
},
{
"cve": "CVE-2023-31122",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-31122"
},
{
"cve": "CVE-2023-33201",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-33201"
},
{
"cve": "CVE-2023-34053",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-34053"
},
{
"cve": "CVE-2023-34055",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-34055"
},
{
"cve": "CVE-2023-4016",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-4016"
},
{
"cve": "CVE-2023-41056",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-41056"
},
{
"cve": "CVE-2023-43496",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-43496"
},
{
"cve": "CVE-2023-44487",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-45142",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-45142"
},
{
"cve": "CVE-2023-4641",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-4641"
},
{
"cve": "CVE-2023-46589",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-46589"
},
{
"cve": "CVE-2023-47100",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-47100"
},
{
"cve": "CVE-2023-4863",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-4863"
},
{
"cve": "CVE-2023-48795",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-49083",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-49083"
},
{
"cve": "CVE-2023-5072",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-5072"
},
{
"cve": "CVE-2023-51074",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-51074"
},
{
"cve": "CVE-2023-51257",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-51257"
},
{
"cve": "CVE-2023-51775",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-51775"
},
{
"cve": "CVE-2023-5341",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-5341"
},
{
"cve": "CVE-2023-5363",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-6507",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2023-6507"
},
{
"cve": "CVE-2024-1635",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-1635"
},
{
"cve": "CVE-2024-21626",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-21626"
},
{
"cve": "CVE-2024-22201",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-22201"
},
{
"cve": "CVE-2024-22233",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-22233"
},
{
"cve": "CVE-2024-22257",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-22257"
},
{
"cve": "CVE-2024-22259",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-22259"
},
{
"cve": "CVE-2024-25062",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-26130",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-26130"
},
{
"cve": "CVE-2024-26308",
"product_status": {
"known_affected": [
"T028682",
"T034149",
"T030586",
"T034148",
"T030589",
"67646",
"T034143",
"T015632",
"T012167",
"T004914",
"T034147",
"T034146",
"T030583",
"T034145",
"T032088",
"T034150",
"T021645",
"T032091",
"T027326",
"T024981",
"T028684"
],
"last_affected": [
"T030595",
"T030593",
"T034144"
]
},
"release_date": "2024-04-16T22:00:00.000+00:00",
"title": "CVE-2024-26308"
}
]
}
WID-SEC-W-2024-1129
Vulnerability from csaf_certbund - Published: 2024-05-14 22:00 - Updated: 2024-05-14 22:00Summary
IBM QRadar SIEM: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff: Ein anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand herbeizuführen oder vertrauliche Informationen offenzulegen.
Betroffene Betriebssysteme: - Linux
Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Diese Fehler bestehen in der Komponente Jose4J. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen wie öffentliche Schlüssel offenzulegen, einen Denial-of-Service-Zustand auszulösen oder Sicherheitsmaßnahmen zu umgehen.
Affected products
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM QRadar SIEM <=7.5.0 UP8
IBM / QRadar SIEM
|
<=7.5.0 UP8 |
Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Diese Fehler bestehen in der Komponente Jose4J. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen wie öffentliche Schlüssel offenzulegen, einen Denial-of-Service-Zustand auszulösen oder Sicherheitsmaßnahmen zu umgehen.
Affected products
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM QRadar SIEM <=7.5.0 UP8
IBM / QRadar SIEM
|
<=7.5.0 UP8 |
Vulnerability 3
Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Dieser Fehler besteht in der Apache Commons Codec-Komponente und wird durch die unsachgemäße Validierung von Eingaben verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
Affected products
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM QRadar SIEM <=7.5.0 UP8
IBM / QRadar SIEM
|
<=7.5.0 UP8 |
References
4 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand herbeizuf\u00fchren oder vertrauliche Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1129 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1129.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1129 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1129"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-05-14",
"url": "https://www.ibm.com/support/pages/node/7152258"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-05-14",
"url": "https://www.ibm.com/support/pages/node/7152261"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-05-14T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:08:56.770+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-1129",
"initial_release_date": "2024-05-14T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-14T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=7.5.0 UP8",
"product": {
"name": "IBM QRadar SIEM \u003c=7.5.0 UP8",
"product_id": "T034835"
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-31582",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Diese Fehler bestehen in der Komponente Jose4J. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen wie \u00f6ffentliche Schl\u00fcssel offenzulegen, einen Denial-of-Service-Zustand auszul\u00f6sen oder Sicherheitsma\u00dfnahmen zu umgehen."
}
],
"product_status": {
"last_affected": [
"T034835"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2023-31582"
},
{
"cve": "CVE-2023-51775",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Diese Fehler bestehen in der Komponente Jose4J. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen wie \u00f6ffentliche Schl\u00fcssel offenzulegen, einen Denial-of-Service-Zustand auszul\u00f6sen oder Sicherheitsma\u00dfnahmen zu umgehen."
}
],
"product_status": {
"last_affected": [
"T034835"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2023-51775"
},
{
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Dieser Fehler besteht in der Apache Commons Codec-Komponente und wird durch die unsachgem\u00e4\u00dfe Validierung von Eingaben verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
}
],
"product_status": {
"last_affected": [
"T034835"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00"
}
]
}
WID-SEC-W-2024-1488
Vulnerability from csaf_certbund - Published: 2024-06-30 22:00 - Updated: 2024-06-30 22:00Summary
IBM InfoSphere Information Server: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.
Angriff: Ein entfernter Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
- Windows
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.
References
23 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1488 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1488.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1488 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1488"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158440 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158440"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158441 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158441"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159065 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159065"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158448 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158448"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158443 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158443"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159064 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159064"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159048 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159048"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158595 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158595"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159049 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159049"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158447 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158447"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158437 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158437"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159057 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159057"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158597 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158597"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159060 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159060"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158444 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158444"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158408 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158408"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158431 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158431"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158439 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158439"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7158425 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7158425"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159066 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159066"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159052 vom 2024-06-30",
"url": "https://www.ibm.com/support/pages/node/7159052"
}
],
"source_lang": "en-US",
"title": "IBM InfoSphere Information Server: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-06-30T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:10:45.818+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-1488",
"initial_release_date": "2024-06-30T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c11.7.1.0",
"product": {
"name": "IBM InfoSphere Information Server \u003c11.7.1.0",
"product_id": "T035707"
}
},
{
"category": "product_version_range",
"name": "\u003c11.7.1.5",
"product": {
"name": "IBM InfoSphere Information Server \u003c11.7.1.5",
"product_id": "T035708"
}
}
],
"category": "product_name",
"name": "InfoSphere Information Server"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-8562",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2020-8562"
},
{
"cve": "CVE-2021-25743",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2021-25743"
},
{
"cve": "CVE-2023-22102",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-22102"
},
{
"cve": "CVE-2023-27561",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-27561"
},
{
"cve": "CVE-2023-28642",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-28642"
},
{
"cve": "CVE-2023-3446",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-35022",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-35022"
},
{
"cve": "CVE-2023-3817",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-3817"
},
{
"cve": "CVE-2023-4759",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-4759"
},
{
"cve": "CVE-2023-50312",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-50312"
},
{
"cve": "CVE-2023-50952",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-50952"
},
{
"cve": "CVE-2023-50953",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-50953"
},
{
"cve": "CVE-2023-50954",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-50954"
},
{
"cve": "CVE-2023-50964",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-50964"
},
{
"cve": "CVE-2023-51775",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-51775"
},
{
"cve": "CVE-2023-5363",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-5678",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-5685",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-5685"
},
{
"cve": "CVE-2023-6129",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-6129"
},
{
"cve": "CVE-2023-6237",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2023-6237"
},
{
"cve": "CVE-2024-0727",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-21626",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-21626"
},
{
"cve": "CVE-2024-22329",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-22329"
},
{
"cve": "CVE-2024-25026",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-25026"
},
{
"cve": "CVE-2024-27268",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-27268"
},
{
"cve": "CVE-2024-27270",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-27270"
},
{
"cve": "CVE-2024-28794",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-28794"
},
{
"cve": "CVE-2024-28795",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-28795"
},
{
"cve": "CVE-2024-28797",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-28797"
},
{
"cve": "CVE-2024-28798",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-28798"
},
{
"cve": "CVE-2024-31898",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-31898"
},
{
"cve": "CVE-2024-31902",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-31902"
},
{
"cve": "CVE-2024-34062",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-34062"
},
{
"cve": "CVE-2024-35119",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-35119"
},
{
"cve": "CVE-2024-35195",
"notes": [
{
"category": "description",
"text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
}
],
"release_date": "2024-06-30T22:00:00.000+00:00",
"title": "CVE-2024-35195"
}
]
}
WID-SEC-W-2024-1549
Vulnerability from csaf_certbund - Published: 2024-07-08 22:00 - Updated: 2024-10-14 22:00Summary
Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: JBoss Enterprise Application Platform ist eine skalierbare Plattform für Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam.
Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat JBoss Enterprise Application Platform ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - Linux
Es besteht eine Schwachstelle in der jose.4.j-Bibliothek in Red Hat JBoss Enterprise Application Platform aufgrund eines unkontrollierten Ressourcenverbrauchs. Indem der p2c-Parameter in JWE auf eine große Zahl gesetzt wird, kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um einen hohen Berechnungsaufwand zu verursachen, was zu einem Denial-of-Service-Zustand führt.
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux AMQ Streams 2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:amq_streams_2
|
AMQ Streams 2 | |
|
Red Hat JBoss Enterprise Application Platform <4.0.2.GA
Red Hat / JBoss Enterprise Application Platform
|
<4.0.2.GA |
References
9 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "JBoss Enterprise Application Platform ist eine skalierbare Plattform f\u00fcr Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat JBoss Enterprise Application Platform ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1549 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1549.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1549 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1549"
},
{
"category": "external",
"summary": "RedHatSecurity Advisory vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4386"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4873 vom 2024-07-26",
"url": "https://access.redhat.com/errata/RHSA-2024:4873"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6536 vom 2024-09-10",
"url": "https://access.redhat.com/errata/RHSA-2024:6536"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8077 vom 2024-10-14",
"url": "https://access.redhat.com/errata/RHSA-2024:8077"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8075 vom 2024-10-14",
"url": "https://access.redhat.com/errata/RHSA-2024:8075"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8076 vom 2024-10-14",
"url": "https://access.redhat.com/errata/RHSA-2024:8076"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8080 vom 2024-10-14",
"url": "https://access.redhat.com/errata/RHSA-2024:8080"
}
],
"source_lang": "en-US",
"title": "Red Hat JBoss Enterprise Application Platform: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-10-14T22:00:00.000+00:00",
"generator": {
"date": "2024-10-15T08:13:40.352+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-1549",
"initial_release_date": "2024-07-08T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-07-08T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-10T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-14T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "AMQ Streams 2",
"product": {
"name": "Red Hat Enterprise Linux AMQ Streams 2",
"product_id": "T037463",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:amq_streams_2"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.0.2.GA",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform \u003c4.0.2.GA",
"product_id": "T035873"
}
},
{
"category": "product_version",
"name": "4.0.2.GA",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 4.0.2.GA",
"product_id": "T035873-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4.0.2.ga"
}
}
}
],
"category": "product_name",
"name": "JBoss Enterprise Application Platform"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-51775",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in der jose.4.j-Bibliothek in Red Hat JBoss Enterprise Application Platform aufgrund eines unkontrollierten Ressourcenverbrauchs. Indem der p2c-Parameter in JWE auf eine gro\u00dfe Zahl gesetzt wird, kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um einen hohen Berechnungsaufwand zu verursachen, was zu einem Denial-of-Service-Zustand f\u00fchrt."
}
],
"product_status": {
"known_affected": [
"67646",
"T037463",
"T035873"
]
},
"release_date": "2024-07-08T22:00:00.000+00:00",
"title": "CVE-2023-51775"
}
]
}
WID-SEC-W-2024-1642
Vulnerability from csaf_certbund - Published: 2024-07-16 22:00 - Updated: 2024-11-20 23:00Summary
Oracle Communications: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.
Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
- Windows
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.
Affected products
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications 12.11.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.0
|
12.11.0 | |
|
Oracle Communications 4.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.1.0
|
4.1.0 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Communications 4.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:4.2.0
|
4.2.0 | |
|
Oracle Communications 9.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.2.0
|
9.2.0 | |
|
Oracle Communications 9.3.0
Oracle / Communications
|
cpe:/a:oracle:communications:9.3.0
|
9.3.0 | |
|
Oracle Communications 23.4.1
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.1
|
23.4.1 | |
|
Oracle Communications 12.11.3
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.3
|
12.11.3 | |
|
Oracle Communications 12.11.4
Oracle / Communications
|
cpe:/a:oracle:communications:12.11.4
|
12.11.4 | |
|
Oracle Communications 10.5
Oracle / Communications
|
cpe:/a:oracle:communications:10.5
|
10.5 | |
|
Oracle Communications 24.2.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.2.0
|
24.2.0 | |
|
Oracle Communications 5.2
Oracle / Communications
|
cpe:/a:oracle:communications:5.2
|
5.2 | |
|
Oracle Communications 24.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:24.1.0
|
24.1.0 | |
|
Oracle Communications 46.6.4
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.4
|
46.6.4 | |
|
Oracle Communications 23.4.2
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.2
|
23.4.2 | |
|
Oracle Communications 46.6.5
Oracle / Communications
|
cpe:/a:oracle:communications:46.6.5
|
46.6.5 | |
|
Oracle Communications 15.0.0.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:15.0.0.0.0
|
15.0.0.0.0 | |
|
Oracle Communications 23.4.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.4.0
|
23.4.0 | |
|
Oracle Communications 23.1.0
Oracle / Communications
|
cpe:/a:oracle:communications:23.1.0
|
23.1.0 | |
|
Oracle Communications 12.6.1.0.0
Oracle / Communications
|
cpe:/a:oracle:communications:12.6.1.0.0
|
12.6.1.0.0 | |
|
Oracle Communications 5.1
Oracle / Communications
|
cpe:/a:oracle:communications:5.1
|
5.1 |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Communications <=23.4.3
Oracle / Communications
|
<=23.4.3 | ||
|
Oracle Communications <=23.4.4
Oracle / Communications
|
<=23.4.4 | ||
|
Oracle Communications <=8.6.0.6
Oracle / Communications
|
<=8.6.0.6 | ||
|
Oracle Communications <=8.6.0.8
Oracle / Communications
|
<=8.6.0.8 | ||
|
Oracle Communications <=9.0.3
Oracle / Communications
|
<=9.0.3 |
References
6 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Communications umfasst branchenspezifische L\u00f6sungen f\u00fcr die Telekommunikationsbranche.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1642 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1642.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1642 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1642"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - July 2024 - Appendix Oracle Communications vom 2024-07-16",
"url": "https://www.oracle.com/security-alerts/cpujul2024.html#AppendixCGBU"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6016 vom 2024-09-05",
"url": "https://access.redhat.com/errata/RHSA-2024:6016"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9975 vom 2024-11-21",
"url": "https://access.redhat.com/errata/RHSA-2024:9975"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9976 vom 2024-11-21",
"url": "https://access.redhat.com/errata/RHSA-2024:9976"
}
],
"source_lang": "en-US",
"title": "Oracle Communications: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-11-20T23:00:00.000+00:00",
"generator": {
"date": "2024-11-21T13:09:50.776+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-1642",
"initial_release_date": "2024-07-16T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-07-16T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-09-05T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-20T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "23.1.0",
"product": {
"name": "Oracle Communications 23.1.0",
"product_id": "T027326",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.1.0"
}
}
},
{
"category": "product_version",
"name": "12.6.1.0.0",
"product": {
"name": "Oracle Communications 12.6.1.0.0",
"product_id": "T027338",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:12.6.1.0.0"
}
}
},
{
"category": "product_version",
"name": "5.1",
"product": {
"name": "Oracle Communications 5.1",
"product_id": "T028684",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:5.1"
}
}
},
{
"category": "product_version",
"name": "15.0.0.0.0",
"product": {
"name": "Oracle Communications 15.0.0.0.0",
"product_id": "T032090",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:15.0.0.0.0"
}
}
},
{
"category": "product_version",
"name": "23.4.0",
"product": {
"name": "Oracle Communications 23.4.0",
"product_id": "T032091",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.4.0"
}
}
},
{
"category": "product_version",
"name": "23.4.1",
"product": {
"name": "Oracle Communications 23.4.1",
"product_id": "T034143",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.4.1"
}
}
},
{
"category": "product_version",
"name": "23.4.2",
"product": {
"name": "Oracle Communications 23.4.2",
"product_id": "T034144",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:23.4.2"
}
}
},
{
"category": "product_version",
"name": "24.1.0",
"product": {
"name": "Oracle Communications 24.1.0",
"product_id": "T034145",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:24.1.0"
}
}
},
{
"category": "product_version",
"name": "5.2",
"product": {
"name": "Oracle Communications 5.2",
"product_id": "T034146",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:5.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.3",
"product": {
"name": "Oracle Communications \u003c=23.4.3",
"product_id": "T036195"
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.3",
"product": {
"name": "Oracle Communications \u003c=23.4.3",
"product_id": "T036195-fixed"
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.4",
"product": {
"name": "Oracle Communications \u003c=23.4.4",
"product_id": "T036196"
}
},
{
"category": "product_version_range",
"name": "\u003c=23.4.4",
"product": {
"name": "Oracle Communications \u003c=23.4.4",
"product_id": "T036196-fixed"
}
},
{
"category": "product_version",
"name": "24.2.0",
"product": {
"name": "Oracle Communications 24.2.0",
"product_id": "T036197",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:24.2.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=8.6.0.8",
"product": {
"name": "Oracle Communications \u003c=8.6.0.8",
"product_id": "T036198"
}
},
{
"category": "product_version_range",
"name": "\u003c=8.6.0.8",
"product": {
"name": "Oracle Communications \u003c=8.6.0.8",
"product_id": "T036198-fixed"
}
},
{
"category": "product_version",
"name": "46.6.4",
"product": {
"name": "Oracle Communications 46.6.4",
"product_id": "T036199",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:46.6.4"
}
}
},
{
"category": "product_version",
"name": "46.6.5",
"product": {
"name": "Oracle Communications 46.6.5",
"product_id": "T036200",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:46.6.5"
}
}
},
{
"category": "product_version",
"name": "12.11.3",
"product": {
"name": "Oracle Communications 12.11.3",
"product_id": "T036201",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:12.11.3"
}
}
},
{
"category": "product_version",
"name": "12.11.4",
"product": {
"name": "Oracle Communications 12.11.4",
"product_id": "T036202",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:12.11.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=8.6.0.6",
"product": {
"name": "Oracle Communications \u003c=8.6.0.6",
"product_id": "T036203"
}
},
{
"category": "product_version_range",
"name": "\u003c=8.6.0.6",
"product": {
"name": "Oracle Communications \u003c=8.6.0.6",
"product_id": "T036203-fixed"
}
},
{
"category": "product_version",
"name": "10.5",
"product": {
"name": "Oracle Communications 10.5",
"product_id": "T036204",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:10.5"
}
}
},
{
"category": "product_version",
"name": "4.1.0",
"product": {
"name": "Oracle Communications 4.1.0",
"product_id": "T036205",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:4.1.0"
}
}
},
{
"category": "product_version",
"name": "4.2.0",
"product": {
"name": "Oracle Communications 4.2.0",
"product_id": "T036206",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:4.2.0"
}
}
},
{
"category": "product_version",
"name": "9.2.0",
"product": {
"name": "Oracle Communications 9.2.0",
"product_id": "T036207",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:9.2.0"
}
}
},
{
"category": "product_version",
"name": "9.3.0",
"product": {
"name": "Oracle Communications 9.3.0",
"product_id": "T036208",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:9.3.0"
}
}
},
{
"category": "product_version",
"name": "12.11.0",
"product": {
"name": "Oracle Communications 12.11.0",
"product_id": "T036209",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:communications:12.11.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c=9.0.3",
"product": {
"name": "Oracle Communications \u003c=9.0.3",
"product_id": "T036210"
}
},
{
"category": "product_version_range",
"name": "\u003c=9.0.3",
"product": {
"name": "Oracle Communications \u003c=9.0.3",
"product_id": "T036210-fixed"
}
}
],
"category": "product_name",
"name": "Communications"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10086",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2019-10086"
},
{
"cve": "CVE-2021-29425",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2021-29425"
},
{
"cve": "CVE-2021-37533",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2021-37533"
},
{
"cve": "CVE-2021-41184",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2021-41184"
},
{
"cve": "CVE-2022-34169",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2022-34169"
},
{
"cve": "CVE-2022-36033",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2022-36033"
},
{
"cve": "CVE-2022-42890",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2022-42890"
},
{
"cve": "CVE-2022-48174",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2022-48174"
},
{
"cve": "CVE-2023-24998",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-24998"
},
{
"cve": "CVE-2023-33201",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-33201"
},
{
"cve": "CVE-2023-37920",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-37920"
},
{
"cve": "CVE-2023-44487",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-46589",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-46589"
},
{
"cve": "CVE-2023-48795",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-51775",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-51775"
},
{
"cve": "CVE-2023-52425",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-52425"
},
{
"cve": "CVE-2023-5685",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2023-5685"
},
{
"cve": "CVE-2024-0450",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-0450"
},
{
"cve": "CVE-2024-22019",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-22019"
},
{
"cve": "CVE-2024-22201",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-22201"
},
{
"cve": "CVE-2024-22234",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-22234"
},
{
"cve": "CVE-2024-22257",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-22257"
},
{
"cve": "CVE-2024-22262",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-22262"
},
{
"cve": "CVE-2024-23672",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-23672"
},
{
"cve": "CVE-2024-23807",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-23807"
},
{
"cve": "CVE-2024-23897",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-23897"
},
{
"cve": "CVE-2024-24549",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-24549"
},
{
"cve": "CVE-2024-25062",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-25710",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-25710"
},
{
"cve": "CVE-2024-26130",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-26130"
},
{
"cve": "CVE-2024-26308",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-26308"
},
{
"cve": "CVE-2024-27316",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-27316"
},
{
"cve": "CVE-2024-28182",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-28752",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-28752"
},
{
"cve": "CVE-2024-28849",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-28849"
},
{
"cve": "CVE-2024-29025",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-29025"
},
{
"cve": "CVE-2024-2961",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-34064",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-34064"
},
{
"cve": "CVE-2024-34069",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-34069"
},
{
"cve": "CVE-2024-6162",
"notes": [
{
"category": "description",
"text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T036209",
"T036205",
"67646",
"T036206",
"T036207",
"T036208",
"T034143",
"T036201",
"T036202",
"T036204",
"T036197",
"T034146",
"T034145",
"T036199",
"T034144",
"T036200",
"T032090",
"T032091",
"T027326",
"T027338",
"T028684"
],
"last_affected": [
"T036195",
"T036196",
"T036203",
"T036198",
"T036210"
]
},
"release_date": "2024-07-16T22:00:00.000+00:00",
"title": "CVE-2024-6162"
}
]
}
WID-SEC-W-2024-3191
Vulnerability from csaf_certbund - Published: 2024-10-15 22:00 - Updated: 2025-09-30 22:00Summary
Oracle Fusion Middleware: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.
Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Sonstiges
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
cPanel cPanel/WHM <132.0.0
cPanel / cPanel/WHM
|
<132.0.0 | ||
|
Oracle Fusion Middleware 11.1.1.5.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:11.1.1.5.0
|
11.1.1.5.0 | |
|
IBM FileNet Content Manager
IBM
|
cpe:/a:ibm:filenet_content_manager:-
|
— | |
|
Oracle Fusion Middleware 12.2.1.3.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.3.0
|
12.2.1.3.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
References
5 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3191 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3191.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3191 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3191"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - October 2024 - Appendix Oracle Fusion Middleware vom 2024-10-15",
"url": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixFMW"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7175917 vom 2025-02-28",
"url": "https://www.ibm.com/support/pages/node/7175917"
},
{
"category": "external",
"summary": "cPanel 132 Change Log vom 2025-10-01",
"url": "https://docs.cpanel.net/changelogs/132-change-log/"
}
],
"source_lang": "en-US",
"title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-09-30T22:00:00.000+00:00",
"generator": {
"date": "2025-10-01T06:52:12.370+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2024-3191",
"initial_release_date": "2024-10-15T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-15T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-03-02T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-09-30T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM FileNet Content Manager",
"product": {
"name": "IBM FileNet Content Manager",
"product_id": "T025993",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:filenet_content_manager:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "11.1.1.5.0",
"product": {
"name": "Oracle Fusion Middleware 11.1.1.5.0",
"product_id": "150102",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:11.1.1.5.0"
}
}
},
{
"category": "product_version",
"name": "12.2.1.3.0",
"product": {
"name": "Oracle Fusion Middleware 12.2.1.3.0",
"product_id": "618028",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
}
}
},
{
"category": "product_version",
"name": "12.2.1.4.0",
"product": {
"name": "Oracle Fusion Middleware 12.2.1.4.0",
"product_id": "751674",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
}
}
},
{
"category": "product_version",
"name": "14.1.1.0.0",
"product": {
"name": "Oracle Fusion Middleware 14.1.1.0.0",
"product_id": "829576",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
}
}
},
{
"category": "product_version",
"name": "8.5.7",
"product": {
"name": "Oracle Fusion Middleware 8.5.7",
"product_id": "T034057",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:8.5.7"
}
}
}
],
"category": "product_name",
"name": "Fusion Middleware"
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c132.0.0",
"product": {
"name": "cPanel cPanel/WHM \u003c132.0.0",
"product_id": "T047273"
}
},
{
"category": "product_version",
"name": "132.0.0",
"product": {
"name": "cPanel cPanel/WHM 132.0.0",
"product_id": "T047273-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:cpanel:cpanel_whm:132.0.0"
}
}
}
],
"category": "product_name",
"name": "cPanel/WHM"
}
],
"category": "vendor",
"name": "cPanel"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-11023",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2020-11023"
},
{
"cve": "CVE-2020-17521",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2020-17521"
},
{
"cve": "CVE-2023-35116",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2023-35116"
},
{
"cve": "CVE-2023-39743",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2023-39743"
},
{
"cve": "CVE-2023-4759",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2023-4759"
},
{
"cve": "CVE-2023-51775",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2023-51775"
},
{
"cve": "CVE-2024-21190",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21190"
},
{
"cve": "CVE-2024-21191",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21191"
},
{
"cve": "CVE-2024-21192",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21192"
},
{
"cve": "CVE-2024-21205",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21205"
},
{
"cve": "CVE-2024-21215",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21215"
},
{
"cve": "CVE-2024-21216",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21216"
},
{
"cve": "CVE-2024-21234",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21234"
},
{
"cve": "CVE-2024-21246",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21246"
},
{
"cve": "CVE-2024-21260",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21260"
},
{
"cve": "CVE-2024-21274",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-21274"
},
{
"cve": "CVE-2024-22201",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-22201"
},
{
"cve": "CVE-2024-22262",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-22262"
},
{
"cve": "CVE-2024-23807",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-23807"
},
{
"cve": "CVE-2024-24549",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-24549"
},
{
"cve": "CVE-2024-2511",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-2511"
},
{
"cve": "CVE-2024-25269",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-25269"
},
{
"cve": "CVE-2024-28182",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-28752",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-28752"
},
{
"cve": "CVE-2024-29131",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-29131"
},
{
"cve": "CVE-2024-36052",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-36052"
},
{
"cve": "CVE-2024-38999",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-38999"
},
{
"cve": "CVE-2024-45492",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-45492"
},
{
"cve": "CVE-2024-6345",
"product_status": {
"known_affected": [
"T047273",
"150102",
"T025993",
"618028",
"751674",
"T034057",
"829576"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-6345"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…