Vulnerability-Lookup

CVE-2024-24549 (GCVE-0-2024-24549)

Vulnerability from cvelistv5 – Published: 2024-03-13 15:46 – Updated: 2025-10-29 11:56

Title

Apache Tomcat: HTTP/2 header handling DoS

Summary

Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.

Severity

No CVSS data available.

CWE

CWE-20 - Improper Input Validation

Assigner

apache

References

1 reference

URL	Tags
https://lists.apache.org/thread/4c50rmomhbbsdgfjs…	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache Tomcat	Affected: 11.0.0-M1 , ≤ 11.0.0-M16 (semver) Affected: 10.1.0-M1 , ≤ 10.1.18 (semver) Affected: 9.0.0-M1 , ≤ 9.0.85 (semver) Affected: 8.5.0 , ≤ 8.5.98 (semver) Unknown: 10.0.0-M1 , ≤ 10.0.27 (semver)

Credits

Bartek Nowotarski

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-24549",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-15T15:00:56.854044Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-04T21:26:52.708Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T23:19:52.712Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240402-0002/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/03/13/3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Apache Tomcat",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "11.0.0-M16",
              "status": "affected",
              "version": "11.0.0-M1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "10.1.18",
              "status": "affected",
              "version": "10.1.0-M1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "9.0.85",
              "status": "affected",
              "version": "9.0.0-M1",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.5.98",
              "status": "affected",
              "version": "8.5.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "10.0.27",
              "status": "unknown",
              "version": "10.0.0-M1",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Bartek Nowotarski"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.\u003cp\u003eThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\u0026nbsp;Other, older, EOL versions may also be affected.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.\u003c/p\u003e"
            }
          ],
          "value": "Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\u00a0Other, older, EOL versions may also be affected.\n\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "text": "important"
            },
            "type": "Textual description of severity"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-29T11:56:23.336Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Apache Tomcat: HTTP/2 header handling DoS",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2024-24549",
    "datePublished": "2024-03-13T15:46:53.085Z",
    "dateReserved": "2024-01-25T12:05:42.034Z",
    "dateUpdated": "2025-10-29T11:56:23.336Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-24549",
      "date": "2026-05-29",
      "epss": "0.64877",
      "percentile": "0.98488"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-24549\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2024-03-13T16:15:29.373\",\"lastModified\":\"2025-10-29T12:15:34.440\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\u00a0Other, older, EOL versions may also be affected.\\n\\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.\"},{\"lang\":\"es\",\"value\":\"Denegaci\u00f3n de servicio debido a una vulnerabilidad de validaci\u00f3n de entrada incorrecta para solicitudes HTTP/2 en Apache Tomcat. Al procesar una solicitud HTTP/2, si la solicitud exced\u00eda cualquiera de los l\u00edmites configurados para los encabezados, la secuencia HTTP/2 asociada no se restablec\u00eda hasta que se hubieran procesado todos los encabezados. Este problema afecta a Apache Tomcat: desde 11.0.0- M1 hasta 11.0.0-M16, desde 10.1.0-M1 hasta 10.1.18, desde 9.0.0-M1 hasta 9.0.85, desde 8.5.0 hasta 8.5.98. Se recomienda a los usuarios actualizar a la versi\u00f3n 11.0.0-M17, 10.1.19, 9.0.86 u 8.5.99, que solucionan el problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.5.0\",\"versionEndExcluding\":\"8.5.99\",\"matchCriteriaId\":\"E75E39D1-9AAE-4F50-9FA8-C1936AAFA896\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndExcluding\":\"9.0.86\",\"matchCriteriaId\":\"B1B2F3FF-1EF4-43FB-896D-C975E058978D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.1.0\",\"versionEndExcluding\":\"10.1.19\",\"matchCriteriaId\":\"03C34A60-381C-4EBD-A116-B700BB41F751\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone1:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1AA7FF6-E8E7-4BF6-983E-0A99B0183008\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone10:*:*:*:*:*:*\",\"matchCriteriaId\":\"57088BDD-A136-45EF-A8A1-2EBF79CEC2CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B32D1D7A-A04F-444E-8F45-BB9A9E4B0199\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone12:*:*:*:*:*:*\",\"matchCriteriaId\":\"0092FB35-3B00-484F-A24D-7828396A4FF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone13:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB557E88-FA9D-4B69-AA6F-EAEE7F9B01AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone14:*:*:*:*:*:*\",\"matchCriteriaId\":\"72D3C6F1-84FA-4F82-96C1-9A8DA1C1F30F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone15:*:*:*:*:*:*\",\"matchCriteriaId\":\"3521C81B-37D9-48FC-9540-D0D333B9A4A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone16:*:*:*:*:*:*\",\"matchCriteriaId\":\"02A84634-A8F2-4BA9-B9F3-BEF36AEC5480\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone2:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AAD52CE-94F5-4F98-A027-9A7E68818CB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1F981F5-035A-4EDD-8A9F-481EE8BC7FF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone4:*:*:*:*:*:*\",\"matchCriteriaId\":\"03A171AF-2EC8-4422-912C-547CDB58CAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone5:*:*:*:*:*:*\",\"matchCriteriaId\":\"538E68C4-0BA4-495F-AEF8-4EF6EE7963CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone6:*:*:*:*:*:*\",\"matchCriteriaId\":\"49350A6E-5E1D-45B2-A874-3B8601B3ADCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone7:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F50942F-DF54-46C0-8371-9A476DD3EEA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone8:*:*:*:*:*:*\",\"matchCriteriaId\":\"D12C2C95-B79F-4AA4-8CE3-99A3EE7991AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone9:*:*:*:*:*:*\",\"matchCriteriaId\":\"98792138-DD56-42DF-9612-3BDC65EEC117\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA277A6C-83EC-4536-9125-97B84C4FAF59\"}]}]}],\"references\":[{\"url\":\"https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/03/13/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240402-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240402-0002/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/13/3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T23:19:52.712Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-24549\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-03-15T15:00:56.854044Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-23T19:01:17.867Z\"}}], \"cna\": {\"title\": \"Apache Tomcat: HTTP/2 header handling DoS\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Bartek Nowotarski\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"important\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache Tomcat\", \"versions\": [{\"status\": \"affected\", \"version\": \"11.0.0-M1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"11.0.0-M16\"}, {\"status\": \"affected\", \"version\": \"10.1.0-M1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"10.1.18\"}, {\"status\": \"affected\", \"version\": \"9.0.0-M1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"9.0.85\"}, {\"status\": \"affected\", \"version\": \"8.5.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"8.5.98\"}, {\"status\": \"unknown\", \"version\": \"10.0.0-M1\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"10.0.27\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg\", \"tags\": [\"vendor-advisory\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\\u00a0Other, older, EOL versions may also be affected.\\n\\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.\u003cp\u003eThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\u0026nbsp;Other, older, EOL versions may also be affected.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20 Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2025-10-29T11:56:23.336Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-24549\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-29T11:56:23.336Z\", \"dateReserved\": \"2024-01-25T12:05:42.034Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2024-03-13T15:46:53.085Z\", \"assignerShortName\": \"apache\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

NCSC-2024-0297

Vulnerability from csaf_ncscnl - Published: 2024-07-17 13:53 - Updated: 2024-07-17 13:53

Summary

Kwetsbaarheden verholpen in Oracle Financial Services Applications

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten: Er zijn kwetsbaarheden verholpen in Oracle Financial Services Applications.

Interpretaties: Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade: * Denial-of-Service (DoS) * Toegang tot gevoelige gegevens * Toegang tot systeemgegevens * Manipulatie van gegevens * (Remote) code execution (Gebruikersrechten)

Oplossingen: Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.

Kans: medium

Schade: high

CWE-1188: Initialization of a Resource with an Insecure Default

CWE-121: Stack-based Buffer Overflow

CWE-20: Improper Input Validation

CWE-306: Missing Authentication for Critical Function

CWE-328: Use of Weak Hash

CWE-400: Uncontrolled Resource Consumption

CWE-404: Improper Resource Shutdown or Release

CWE-416: Use After Free

CWE-426: Untrusted Search Path

CWE-502: Deserialization of Untrusted Data

CWE-532: Insertion of Sensitive Information into Log File

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-787: Out-of-bounds Write

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2022-36944

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 53 products

CVE-2023-6129

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

CWE-328 - Use of Weak Hash

Affected products

Known affected 31 products

CVE-2023-26031

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-426 - Untrusted Search Path

Affected products

Known affected 23 products

CVE-2023-34055

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 55 products

CVE-2023-44483

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-532 - Insertion of Sensitive Information into Log File

Affected products

Known affected 55 products

CVE-2023-47248

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Known affected 47 products

CVE-2023-50447

9.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

Affected products

Known affected 23 products

CVE-2023-51074

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Known affected 31 products

CVE-2023-52425

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 23 products

CVE-2024-2511

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 23 products

CVE-2024-21188

Affected products

Known affected 24 products

CVE-2024-22201

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 31 products

CVE-2024-22262

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 23 products

CVE-2024-23807

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Known affected 23 products

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 31 products

CVE-2024-24816

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 31 products

CVE-2024-25062

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Known affected 31 products

CVE-2024-26308

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 31 products

CVE-2024-29025

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 23 products

CVE-2024-29133

CWE-787 - Out-of-bounds Write

Affected products

Known affected 23 products

CVE-2024-32114

8.5 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H

CWE-306 - Missing Authentication for Critical Function

Affected products

Known affected 23 products

References

44 references

URL	Category
https://nvd.nist.gov/vuln/detail/CVE-2022-36944	external
https://nvd.nist.gov/vuln/detail/CVE-2023-26031	external
https://nvd.nist.gov/vuln/detail/CVE-2023-34055	external
https://nvd.nist.gov/vuln/detail/CVE-2023-44483	external
https://nvd.nist.gov/vuln/detail/CVE-2023-47248	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50447	external
https://nvd.nist.gov/vuln/detail/CVE-2023-51074	external
https://nvd.nist.gov/vuln/detail/CVE-2023-52425	external
https://nvd.nist.gov/vuln/detail/CVE-2023-6129	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21188	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22201	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22262	external
https://nvd.nist.gov/vuln/detail/CVE-2024-23807	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24549	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24816	external
https://nvd.nist.gov/vuln/detail/CVE-2024-25062	external
https://nvd.nist.gov/vuln/detail/CVE-2024-2511	external
https://nvd.nist.gov/vuln/detail/CVE-2024-26308	external
https://nvd.nist.gov/vuln/detail/CVE-2024-29025	external
https://nvd.nist.gov/vuln/detail/CVE-2024-29133	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32114	external
https://www.oracle.com/docs/tech/security-alerts/…	external
https://www.oracle.com/security-alerts/cpujul2024.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Er zijn kwetsbaarheden verholpen in Oracle Financial Services Applications.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n* Denial-of-Service (DoS)\n* Toegang tot gevoelige gegevens\n* Toegang tot systeemgegevens\n* Manipulatie van gegevens\n* (Remote) code execution (Gebruikersrechten)",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Initialization of a Resource with an Insecure Default",
        "title": "CWE-1188"
      },
      {
        "category": "general",
        "text": "Stack-based Buffer Overflow",
        "title": "CWE-121"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Missing Authentication for Critical Function",
        "title": "CWE-306"
      },
      {
        "category": "general",
        "text": "Use of Weak Hash",
        "title": "CWE-328"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "Untrusted Search Path",
        "title": "CWE-426"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Insertion of Sensitive Information into Log File",
        "title": "CWE-532"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
        "title": "CWE-77"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36944"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26031"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-34055"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44483"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47248"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50447"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51074"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52425"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6129"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21188"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22201"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22262"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23807"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24816"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25062"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2511"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26308"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29025"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29133"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32114"
      },
      {
        "category": "external",
        "summary": "Reference - oracle",
        "url": "https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json"
      },
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; ibm; nvd; oracle",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html"
      }
    ],
    "title": " Kwetsbaarheden verholpen in Oracle Financial Services Applications",
    "tracking": {
      "current_release_date": "2024-07-17T13:53:54.655859Z",
      "id": "NCSC-2024-0297",
      "initial_release_date": "2024-07-17T13:53:54.655859Z",
      "revision_history": [
        {
          "date": "2024-07-17T13:53:54.655859Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-9711",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-9300",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-9522",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-8848",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-189066",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_analytical_applications_infrastructure",
            "product": {
              "name": "financial_services_analytical_applications_infrastructure",
              "product_id": "CSAFPID-189065",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_basel_regulatory_capital_basic",
            "product": {
              "name": "financial_services_basel_regulatory_capital_basic",
              "product_id": "CSAFPID-1503626",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.7.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_basel_regulatory_capital_basic",
            "product": {
              "name": "financial_services_basel_regulatory_capital_basic",
              "product_id": "CSAFPID-1503627",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.8.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
            "product": {
              "name": "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
              "product_id": "CSAFPID-1503628",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.7.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
            "product": {
              "name": "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
              "product_id": "CSAFPID-1503629",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.8.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-189067",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-93307",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-219772",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-219770",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-816828",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_behavior_detection_platform",
            "product": {
              "name": "financial_services_behavior_detection_platform",
              "product_id": "CSAFPID-1503630",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_cash_flow_engine",
            "product": {
              "name": "financial_services_cash_flow_engine",
              "product_id": "CSAFPID-764273",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_cash_flow_engine:8.1.2.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_compliance_studio",
            "product": {
              "name": "financial_services_compliance_studio",
              "product_id": "CSAFPID-345047",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_compliance_studio",
            "product": {
              "name": "financial_services_compliance_studio",
              "product_id": "CSAFPID-816829",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_compliance_studio",
            "product": {
              "name": "financial_services_compliance_studio",
              "product_id": "CSAFPID-1503631",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_compliance_studio",
            "product": {
              "name": "financial_services_compliance_studio",
              "product_id": "CSAFPID-1503632",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-219774",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-1503633",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-180190",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-1503634",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-219773",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-219771",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-816830",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-1503635",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_enterprise_case_management",
            "product": {
              "name": "financial_services_enterprise_case_management",
              "product_id": "CSAFPID-1503636",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.7.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_lending_and_leasing",
            "product": {
              "name": "financial_services_lending_and_leasing",
              "product_id": "CSAFPID-816831",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_lending_and_leasing:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_model_management_and_governance",
            "product": {
              "name": "financial_services_model_management_and_governance",
              "product_id": "CSAFPID-611392",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_model_management_and_governance",
            "product": {
              "name": "financial_services_model_management_and_governance",
              "product_id": "CSAFPID-611391",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_model_management_and_governance",
            "product": {
              "name": "financial_services_model_management_and_governance",
              "product_id": "CSAFPID-1503319",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_model_management_and_governance",
            "product": {
              "name": "financial_services_model_management_and_governance",
              "product_id": "CSAFPID-1503318",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816833",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_pricing_services___2.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816840",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_security___5.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-765266",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-344846",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.7.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816832",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-912589",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816834",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-765264",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-765265",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-344845",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816835",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-400311",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816836",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-912590",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816837",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-400309",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816838",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-912591",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816839",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-912592",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816841",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-816842",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-1503637",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-1503923",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_revenue_management_and_billing",
            "product": {
              "name": "financial_services_revenue_management_and_billing",
              "product_id": "CSAFPID-1503638",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.1.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_trade-based_anti_money_laundering_enterprise_edition",
            "product": {
              "name": "financial_services_trade-based_anti_money_laundering_enterprise_edition",
              "product_id": "CSAFPID-220374",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "financial_services_trade-based_anti_money_laundering_enterprise_edition",
            "product": {
              "name": "financial_services_trade-based_anti_money_laundering_enterprise_edition",
              "product_id": "CSAFPID-764926",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8.0:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-36944",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764273",
          "CSAFPID-611392",
          "CSAFPID-611391",
          "CSAFPID-9522",
          "CSAFPID-816828",
          "CSAFPID-816829",
          "CSAFPID-816830",
          "CSAFPID-816831",
          "CSAFPID-344846",
          "CSAFPID-816832",
          "CSAFPID-816833",
          "CSAFPID-816834",
          "CSAFPID-344845",
          "CSAFPID-816835",
          "CSAFPID-765266",
          "CSAFPID-816836",
          "CSAFPID-816837",
          "CSAFPID-816838",
          "CSAFPID-816839",
          "CSAFPID-816840",
          "CSAFPID-816841",
          "CSAFPID-816842",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-8848",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-219772",
          "CSAFPID-219770",
          "CSAFPID-345047",
          "CSAFPID-219774",
          "CSAFPID-180190",
          "CSAFPID-219773",
          "CSAFPID-219771",
          "CSAFPID-220374"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-36944",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36944.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764273",
            "CSAFPID-611392",
            "CSAFPID-611391",
            "CSAFPID-9522",
            "CSAFPID-816828",
            "CSAFPID-816829",
            "CSAFPID-816830",
            "CSAFPID-816831",
            "CSAFPID-344846",
            "CSAFPID-816832",
            "CSAFPID-816833",
            "CSAFPID-816834",
            "CSAFPID-344845",
            "CSAFPID-816835",
            "CSAFPID-765266",
            "CSAFPID-816836",
            "CSAFPID-816837",
            "CSAFPID-816838",
            "CSAFPID-816839",
            "CSAFPID-816840",
            "CSAFPID-816841",
            "CSAFPID-816842",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-8848",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-219772",
            "CSAFPID-219770",
            "CSAFPID-345047",
            "CSAFPID-219774",
            "CSAFPID-180190",
            "CSAFPID-219773",
            "CSAFPID-219771",
            "CSAFPID-220374"
          ]
        }
      ],
      "title": "CVE-2022-36944"
    },
    {
      "cve": "CVE-2023-6129",
      "cwe": {
        "id": "CWE-328",
        "name": "Use of Weak Hash"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of Weak Hash",
          "title": "CWE-328"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-6129",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-6129.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-26031",
      "cwe": {
        "id": "CWE-426",
        "name": "Untrusted Search Path"
      },
      "notes": [
        {
          "category": "other",
          "text": "Untrusted Search Path",
          "title": "CWE-426"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-26031",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26031.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-26031"
    },
    {
      "cve": "CVE-2023-34055",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-8848",
          "CSAFPID-9300",
          "CSAFPID-9522",
          "CSAFPID-9711",
          "CSAFPID-93307",
          "CSAFPID-180190",
          "CSAFPID-189065",
          "CSAFPID-189066",
          "CSAFPID-189067",
          "CSAFPID-219770",
          "CSAFPID-219771",
          "CSAFPID-219774",
          "CSAFPID-220374",
          "CSAFPID-344845",
          "CSAFPID-344846",
          "CSAFPID-765266",
          "CSAFPID-816828",
          "CSAFPID-816829",
          "CSAFPID-816830",
          "CSAFPID-816831",
          "CSAFPID-816832",
          "CSAFPID-816833",
          "CSAFPID-816834",
          "CSAFPID-816835",
          "CSAFPID-816836",
          "CSAFPID-816837",
          "CSAFPID-816838",
          "CSAFPID-816839",
          "CSAFPID-816840",
          "CSAFPID-816841",
          "CSAFPID-816842",
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-34055",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34055.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-8848",
            "CSAFPID-9300",
            "CSAFPID-9522",
            "CSAFPID-9711",
            "CSAFPID-93307",
            "CSAFPID-180190",
            "CSAFPID-189065",
            "CSAFPID-189066",
            "CSAFPID-189067",
            "CSAFPID-219770",
            "CSAFPID-219771",
            "CSAFPID-219774",
            "CSAFPID-220374",
            "CSAFPID-344845",
            "CSAFPID-344846",
            "CSAFPID-765266",
            "CSAFPID-816828",
            "CSAFPID-816829",
            "CSAFPID-816830",
            "CSAFPID-816831",
            "CSAFPID-816832",
            "CSAFPID-816833",
            "CSAFPID-816834",
            "CSAFPID-816835",
            "CSAFPID-816836",
            "CSAFPID-816837",
            "CSAFPID-816838",
            "CSAFPID-816839",
            "CSAFPID-816840",
            "CSAFPID-816841",
            "CSAFPID-816842",
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-34055"
    },
    {
      "cve": "CVE-2023-44483",
      "cwe": {
        "id": "CWE-532",
        "name": "Insertion of Sensitive Information into Log File"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insertion of Sensitive Information into Log File",
          "title": "CWE-532"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-8848",
          "CSAFPID-9300",
          "CSAFPID-9522",
          "CSAFPID-9711",
          "CSAFPID-93307",
          "CSAFPID-180190",
          "CSAFPID-189065",
          "CSAFPID-189066",
          "CSAFPID-189067",
          "CSAFPID-219770",
          "CSAFPID-219771",
          "CSAFPID-219774",
          "CSAFPID-220374",
          "CSAFPID-344845",
          "CSAFPID-344846",
          "CSAFPID-765266",
          "CSAFPID-816828",
          "CSAFPID-816829",
          "CSAFPID-816830",
          "CSAFPID-816831",
          "CSAFPID-816832",
          "CSAFPID-816833",
          "CSAFPID-816834",
          "CSAFPID-816835",
          "CSAFPID-816836",
          "CSAFPID-816837",
          "CSAFPID-816838",
          "CSAFPID-816839",
          "CSAFPID-816840",
          "CSAFPID-816841",
          "CSAFPID-816842",
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-44483",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44483.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-8848",
            "CSAFPID-9300",
            "CSAFPID-9522",
            "CSAFPID-9711",
            "CSAFPID-93307",
            "CSAFPID-180190",
            "CSAFPID-189065",
            "CSAFPID-189066",
            "CSAFPID-189067",
            "CSAFPID-219770",
            "CSAFPID-219771",
            "CSAFPID-219774",
            "CSAFPID-220374",
            "CSAFPID-344845",
            "CSAFPID-344846",
            "CSAFPID-765266",
            "CSAFPID-816828",
            "CSAFPID-816829",
            "CSAFPID-816830",
            "CSAFPID-816831",
            "CSAFPID-816832",
            "CSAFPID-816833",
            "CSAFPID-816834",
            "CSAFPID-816835",
            "CSAFPID-816836",
            "CSAFPID-816837",
            "CSAFPID-816838",
            "CSAFPID-816839",
            "CSAFPID-816840",
            "CSAFPID-816841",
            "CSAFPID-816842",
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-44483"
    },
    {
      "cve": "CVE-2023-47248",
      "product_status": {
        "known_affected": [
          "CSAFPID-8848",
          "CSAFPID-9300",
          "CSAFPID-9522",
          "CSAFPID-9711",
          "CSAFPID-93307",
          "CSAFPID-180190",
          "CSAFPID-189065",
          "CSAFPID-189066",
          "CSAFPID-189067",
          "CSAFPID-219770",
          "CSAFPID-219771",
          "CSAFPID-219774",
          "CSAFPID-220374",
          "CSAFPID-344845",
          "CSAFPID-344846",
          "CSAFPID-765266",
          "CSAFPID-816828",
          "CSAFPID-816829",
          "CSAFPID-816830",
          "CSAFPID-816831",
          "CSAFPID-816832",
          "CSAFPID-816833",
          "CSAFPID-816834",
          "CSAFPID-816835",
          "CSAFPID-816836",
          "CSAFPID-816837",
          "CSAFPID-816838",
          "CSAFPID-816839",
          "CSAFPID-816840",
          "CSAFPID-816841",
          "CSAFPID-816842",
          "CSAFPID-1503318",
          "CSAFPID-1503319",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-47248",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-47248.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-8848",
            "CSAFPID-9300",
            "CSAFPID-9522",
            "CSAFPID-9711",
            "CSAFPID-93307",
            "CSAFPID-180190",
            "CSAFPID-189065",
            "CSAFPID-189066",
            "CSAFPID-189067",
            "CSAFPID-219770",
            "CSAFPID-219771",
            "CSAFPID-219774",
            "CSAFPID-220374",
            "CSAFPID-344845",
            "CSAFPID-344846",
            "CSAFPID-765266",
            "CSAFPID-816828",
            "CSAFPID-816829",
            "CSAFPID-816830",
            "CSAFPID-816831",
            "CSAFPID-816832",
            "CSAFPID-816833",
            "CSAFPID-816834",
            "CSAFPID-816835",
            "CSAFPID-816836",
            "CSAFPID-816837",
            "CSAFPID-816838",
            "CSAFPID-816839",
            "CSAFPID-816840",
            "CSAFPID-816841",
            "CSAFPID-816842",
            "CSAFPID-1503318",
            "CSAFPID-1503319",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-47248"
    },
    {
      "cve": "CVE-2023-50447",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
          "title": "CWE-77"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-50447",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50447.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-50447"
    },
    {
      "cve": "CVE-2023-51074",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-51074",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51074.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-51074"
    },
    {
      "cve": "CVE-2023-52425",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-52425",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52425.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2024-2511",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-2511",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2511.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-2511"
    },
    {
      "cve": "CVE-2024-21188",
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926",
          "CSAFPID-816842"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21188",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21188.json"
        }
      ],
      "title": "CVE-2024-21188"
    },
    {
      "cve": "CVE-2024-22201",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22201",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22201.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22262",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22262",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-23807",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23807",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23807.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-23807"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-24816",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24816",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24816.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-24816"
    },
    {
      "cve": "CVE-2024-25062",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-25062",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25062.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-26308",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-400309",
          "CSAFPID-400311",
          "CSAFPID-765264",
          "CSAFPID-765265",
          "CSAFPID-912589",
          "CSAFPID-912590",
          "CSAFPID-912591",
          "CSAFPID-912592",
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-26308",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-26308.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-400309",
            "CSAFPID-400311",
            "CSAFPID-765264",
            "CSAFPID-765265",
            "CSAFPID-912589",
            "CSAFPID-912590",
            "CSAFPID-912591",
            "CSAFPID-912592",
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-29025",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29025",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29025.json"
        }
      ],
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-29133",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29133",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29133.json"
        }
      ],
      "title": "CVE-2024-29133"
    },
    {
      "cve": "CVE-2024-32114",
      "cwe": {
        "id": "CWE-306",
        "name": "Missing Authentication for Critical Function"
      },
      "notes": [
        {
          "category": "other",
          "text": "Missing Authentication for Critical Function",
          "title": "CWE-306"
        },
        {
          "category": "other",
          "text": "Initialization of a Resource with an Insecure Default",
          "title": "CWE-1188"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9711",
          "CSAFPID-9300",
          "CSAFPID-189066",
          "CSAFPID-189065",
          "CSAFPID-1503626",
          "CSAFPID-1503627",
          "CSAFPID-1503628",
          "CSAFPID-1503629",
          "CSAFPID-189067",
          "CSAFPID-93307",
          "CSAFPID-816828",
          "CSAFPID-1503630",
          "CSAFPID-1503631",
          "CSAFPID-1503632",
          "CSAFPID-1503633",
          "CSAFPID-1503634",
          "CSAFPID-1503635",
          "CSAFPID-1503636",
          "CSAFPID-1503319",
          "CSAFPID-1503318",
          "CSAFPID-1503637",
          "CSAFPID-1503638",
          "CSAFPID-764926"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-32114",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-32114.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9711",
            "CSAFPID-9300",
            "CSAFPID-189066",
            "CSAFPID-189065",
            "CSAFPID-1503626",
            "CSAFPID-1503627",
            "CSAFPID-1503628",
            "CSAFPID-1503629",
            "CSAFPID-189067",
            "CSAFPID-93307",
            "CSAFPID-816828",
            "CSAFPID-1503630",
            "CSAFPID-1503631",
            "CSAFPID-1503632",
            "CSAFPID-1503633",
            "CSAFPID-1503634",
            "CSAFPID-1503635",
            "CSAFPID-1503636",
            "CSAFPID-1503319",
            "CSAFPID-1503318",
            "CSAFPID-1503637",
            "CSAFPID-1503638",
            "CSAFPID-764926"
          ]
        }
      ],
      "title": "CVE-2024-32114"
    }
  ]
}

NCSC-2024-0303

Vulnerability from csaf_ncscnl - Published: 2024-07-17 13:54 - Updated: 2024-07-17 13:54

Summary

Kwetsbaarheden verholpen in Oracle MySQL

Notes

Feiten: Er zijn kwetsbaarheden verholpen in Oracle MySQL.

Oplossingen: Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.

Kans: medium

Schade: high

CWE-20: Improper Input Validation

CWE-222: Truncation of Security-relevant Information

CWE-284: Improper Access Control

CWE-285: Improper Authorization

CWE-295: Improper Certificate Validation

CWE-328: Use of Weak Hash

CWE-345: Insufficient Verification of Data Authenticity

CWE-400: Uncontrolled Resource Consumption

CWE-404: Improper Resource Shutdown or Release

CWE-405: Asymmetric Resource Consumption (Amplification)

CWE-416: Use After Free

CWE-450: Multiple Interpretations of UI Input

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CVE-2021-24112

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—

CVE-2023-6129

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

CWE-328 - Use of Weak Hash

Affected products

Known affected 9 products

Product	Identifier	Version
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_enterprise_backup oracle	`cpe:2.3:a:oracle:mysql_enterprise_backup::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2023-37920

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-295 - Improper Certificate Validation

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2023-48795

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-222 - Truncation of Security-relevant Information

Affected products

Known affected 11 products

Product	Identifier	Version
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster:8.1.0:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.1.0:::::::*`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—
mysql_enterprise_backup oracle	`cpe:2.3:a:oracle:mysql_enterprise_backup::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—

CVE-2023-52425

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-0450

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-450 - Multiple Interpretations of UI Input

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-20996

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21125

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21127

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-285 - Improper Authorization

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21129

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21130

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21134

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21135

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21137

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21142

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21157

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21159

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21160

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21162

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21163

5.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21165

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21166

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H

CWE-285 - Improper Authorization

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21170

6.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21171

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21173

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21176

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21177

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21179

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-21185

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-22257

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-284 - Improper Access Control

Affected products

Known affected 9 products

Product	Identifier	Version
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_enterprise_backup oracle	`cpe:2.3:a:oracle:mysql_enterprise_backup::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-22262

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 8 products

Product	Identifier	Version
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 9 products

Product	Identifier	Version
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_enterprise_backup oracle	`cpe:2.3:a:oracle:mysql_enterprise_backup::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

CVE-2024-25062

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Known affected 9 products

Product	Identifier	Version
mysql_connectors oracle	`cpe:2.3:a:oracle:mysql_connectors::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server::::::::`	—
mysql_cluster oracle	`cpe:2.3:a:oracle:mysql_cluster::::::::`	—
mysql_enterprise_monitor oracle	`cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::`	—
mysql_enterprise_backup oracle	`cpe:2.3:a:oracle:mysql_enterprise_backup::::::::`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.0.38:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:8.4.1:::::::*`	—
mysql_server oracle	`cpe:2.3:a:oracle:mysql_server:9.0.0:::::::*`	—
mysql_workbench oracle	`cpe:2.3:a:oracle:mysql_workbench::::::::`	—

References

68 references

URL	Category
https://nvd.nist.gov/vuln/detail/CVE-2021-24112	external
https://nvd.nist.gov/vuln/detail/CVE-2023-37920	external
https://nvd.nist.gov/vuln/detail/CVE-2023-48795	external
https://nvd.nist.gov/vuln/detail/CVE-2023-52425	external
https://nvd.nist.gov/vuln/detail/CVE-2023-6129	external
https://nvd.nist.gov/vuln/detail/CVE-2024-0450	external
https://nvd.nist.gov/vuln/detail/CVE-2024-20996	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21125	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21127	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21129	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21130	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21134	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21135	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21137	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21142	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21157	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21159	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21160	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21162	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21163	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21165	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21166	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21170	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21171	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21173	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21176	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21177	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21179	external
https://nvd.nist.gov/vuln/detail/CVE-2024-21185	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22257	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22262	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24549	external
https://nvd.nist.gov/vuln/detail/CVE-2024-25062	external
https://www.oracle.com/docs/tech/security-alerts/…	external
https://www.oracle.com/security-alerts/cpujul2024.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Er zijn kwetsbaarheden verholpen in Oracle MySQL.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n* Denial-of-Service (DoS)\n* Toegang tot gevoelige gegevens\n* Toegang tot systeemgegevens\n* Manipulatie van gegevens\n* (Remote) code execution (Gebruikersrechten)",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates beschikbaar gesteld om de kwetsbaarheden te verhelpen. Zie de referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Truncation of Security-relevant Information",
        "title": "CWE-222"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improper Authorization",
        "title": "CWE-285"
      },
      {
        "category": "general",
        "text": "Improper Certificate Validation",
        "title": "CWE-295"
      },
      {
        "category": "general",
        "text": "Use of Weak Hash",
        "title": "CWE-328"
      },
      {
        "category": "general",
        "text": "Insufficient Verification of Data Authenticity",
        "title": "CWE-345"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Asymmetric Resource Consumption (Amplification)",
        "title": "CWE-405"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "Multiple Interpretations of UI Input",
        "title": "CWE-450"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-24112"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-37920"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52425"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6129"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0450"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-20996"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21125"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21127"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21129"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21130"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21134"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21135"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21137"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21142"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21157"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21159"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21160"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21162"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21163"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21165"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21166"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21170"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21171"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21173"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21176"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21177"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21179"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21185"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22257"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22262"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549"
      },
      {
        "category": "external",
        "summary": "Source - nvd",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25062"
      },
      {
        "category": "external",
        "summary": "Reference - oracle",
        "url": "https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json"
      },
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; ibm; nvd; oracle",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Oracle MySQL",
    "tracking": {
      "current_release_date": "2024-07-17T13:54:56.036488Z",
      "id": "NCSC-2024-0303",
      "initial_release_date": "2024-07-17T13:54:56.036488Z",
      "revision_history": [
        {
          "date": "2024-07-17T13:54:56.036488Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "mysql_cluster",
            "product": {
              "name": "mysql_cluster",
              "product_id": "CSAFPID-764289",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_cluster",
            "product": {
              "name": "mysql_cluster",
              "product_id": "CSAFPID-1503737",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_cluster:8.0.37:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_cluster",
            "product": {
              "name": "mysql_cluster",
              "product_id": "CSAFPID-611599",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_cluster:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_cluster",
            "product": {
              "name": "mysql_cluster",
              "product_id": "CSAFPID-1503740",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_cluster:8.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_connectors",
            "product": {
              "name": "mysql_connectors",
              "product_id": "CSAFPID-221160",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_connectors",
            "product": {
              "name": "mysql_connectors",
              "product_id": "CSAFPID-912112",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_connectors:8.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_connectors",
            "product": {
              "name": "mysql_connectors",
              "product_id": "CSAFPID-1503309",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_connectors:8.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_enterprise_backup",
            "product": {
              "name": "mysql_enterprise_backup",
              "product_id": "CSAFPID-764939",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_enterprise_backup:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_enterprise_backup",
            "product": {
              "name": "mysql_enterprise_backup",
              "product_id": "CSAFPID-912114",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_enterprise_backup:8.0.36:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_enterprise_backup",
            "product": {
              "name": "mysql_enterprise_backup",
              "product_id": "CSAFPID-912113",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_enterprise_backup:8.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_enterprise_monitor",
            "product": {
              "name": "mysql_enterprise_monitor",
              "product_id": "CSAFPID-764290",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_enterprise_monitor",
            "product": {
              "name": "mysql_enterprise_monitor",
              "product_id": "CSAFPID-912115",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_enterprise_monitor:8.0.37:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503882",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503876",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503822",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503792",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503836",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503842",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503779",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503786",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503856",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503835",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503878",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503888",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503866",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503788",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503851",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503843",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503804",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503759",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503823",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503809",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503837",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503796",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503762",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503760",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503880",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503887",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.31:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503855",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.32:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503768",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.33:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503778",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.34:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503862",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503853",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503845",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503803",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503758",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503818",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.5.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503782",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503800",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503869",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503771",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503860",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503885",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503872",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503871",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503763",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503789",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503849",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503841",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503831",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503765",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503805",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503840",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503848",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503859",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503761",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503868",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503873",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503881",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503861",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503817",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503777",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503808",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503769",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503802",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503830",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503854",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503784",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:7.6.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503838",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503863",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503847",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503857",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503767",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503877",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503883",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503832",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503858",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503766",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503776",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503850",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503824",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503821",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503810",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503770",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503798",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503828",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503846",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503775",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503773",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503865",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503886",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503864",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503781",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503787",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.31:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503793",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.32:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503839",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.33:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503811",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.34:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503820",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.35:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503764",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.36:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503794",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.37:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503790",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503780",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503797",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503826",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503814",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503807",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.0.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503813",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503806",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503816",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_ndb_cluster",
            "product": {
              "name": "mysql_ndb_cluster",
              "product_id": "CSAFPID-1503801",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_ndb_cluster:8.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-504250",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-912117",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:8.0.36:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-1503653",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:8.0.38:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-611602",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-912116",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:8.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-1503657",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:8.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_server",
            "product": {
              "name": "mysql_server",
              "product_id": "CSAFPID-1503659",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_server:9.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_workbench",
            "product": {
              "name": "mysql_workbench",
              "product_id": "CSAFPID-764763",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql_workbench",
            "product": {
              "name": "mysql_workbench",
              "product_id": "CSAFPID-1503321",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql_workbench:8.0.36:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93497",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93496",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93495",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93494",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93493",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93492",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93491",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93490",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93489",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93488",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93487",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93486",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93485",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93484",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93483",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93482",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93481",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93480",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503875",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503884",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503829",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503870",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503783",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93479",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503799",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503827",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.31:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503815",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.32:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503812",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.33:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503774",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.34:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93478",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93477",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93476",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93475",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93474",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93473",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.5.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93472",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93471",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93470",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93469",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93468",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93467",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93466",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93465",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93464",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93463",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93462",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503834",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93461",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93460",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503874",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503867",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503833",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503852",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503785",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503772",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503795",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503825",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503819",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93459",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503791",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93458",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93457",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93456",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93455",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93454",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93453",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:7.6.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93339",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93337",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93336",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93335",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.11:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93334",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.12:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93333",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.13:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93332",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.14:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93331",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93330",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.16:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93329",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.17:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93328",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.18:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93327",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.19:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93326",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93325",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.20:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93324",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.21:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93323",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93322",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.23:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93321",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.24:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93320",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.25:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93319",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.26:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93318",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.27:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93317",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.28:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-283963",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.29:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93316",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-283962",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.30:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-283964",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.31:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-94333",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.32:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-248612",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.33:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-716944",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.34:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913003",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.35:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913004",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.36:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503879",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.37:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503922",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.38:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93314",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-93313",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-912999",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913000",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913001",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913002",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.0.9:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913005",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913006",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-913007",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503844",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503921",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:8.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "mysql",
            "product": {
              "name": "mysql",
              "product_id": "CSAFPID-1503920",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:mysql:9.0:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-24112",
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-764763",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-24112",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-24112.json"
        }
      ],
      "title": "CVE-2021-24112"
    },
    {
      "cve": "CVE-2023-6129",
      "cwe": {
        "id": "CWE-328",
        "name": "Use of Weak Hash"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of Weak Hash",
          "title": "CWE-328"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-221160",
          "CSAFPID-504250",
          "CSAFPID-764289",
          "CSAFPID-764290",
          "CSAFPID-764939",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-6129",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-6129.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-221160",
            "CSAFPID-504250",
            "CSAFPID-764289",
            "CSAFPID-764290",
            "CSAFPID-764939",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-37920",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Certificate Validation",
          "title": "CWE-295"
        },
        {
          "category": "other",
          "text": "Insufficient Verification of Data Authenticity",
          "title": "CWE-345"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-37920",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-37920.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2023-37920"
    },
    {
      "cve": "CVE-2023-48795",
      "cwe": {
        "id": "CWE-222",
        "name": "Truncation of Security-relevant Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Truncation of Security-relevant Information",
          "title": "CWE-222"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-221160",
          "CSAFPID-504250",
          "CSAFPID-611599",
          "CSAFPID-611602",
          "CSAFPID-764289",
          "CSAFPID-764290",
          "CSAFPID-764763",
          "CSAFPID-764939",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-48795",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-221160",
            "CSAFPID-504250",
            "CSAFPID-611599",
            "CSAFPID-611602",
            "CSAFPID-764289",
            "CSAFPID-764290",
            "CSAFPID-764763",
            "CSAFPID-764939",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659"
          ]
        }
      ],
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-52425",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-52425",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52425.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2024-0450",
      "cwe": {
        "id": "CWE-450",
        "name": "Multiple Interpretations of UI Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Multiple Interpretations of UI Input",
          "title": "CWE-450"
        },
        {
          "category": "other",
          "text": "Asymmetric Resource Consumption (Amplification)",
          "title": "CWE-405"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-0450",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0450.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-0450"
    },
    {
      "cve": "CVE-2024-20996",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-20996",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-20996.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-20996"
    },
    {
      "cve": "CVE-2024-21125",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21125",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21125.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21125"
    },
    {
      "cve": "CVE-2024-21127",
      "cwe": {
        "id": "CWE-285",
        "name": "Improper Authorization"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authorization",
          "title": "CWE-285"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21127",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21127.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21127"
    },
    {
      "cve": "CVE-2024-21129",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21129",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21129.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21129"
    },
    {
      "cve": "CVE-2024-21130",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21130",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21130.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21130"
    },
    {
      "cve": "CVE-2024-21134",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21134",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21134.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21134"
    },
    {
      "cve": "CVE-2024-21135",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21135",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21135.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21135"
    },
    {
      "cve": "CVE-2024-21137",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21137",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21137.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21137"
    },
    {
      "cve": "CVE-2024-21142",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21142",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21142.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21142"
    },
    {
      "cve": "CVE-2024-21157",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21157",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21157.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21157"
    },
    {
      "cve": "CVE-2024-21159",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21159",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21159.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21159"
    },
    {
      "cve": "CVE-2024-21160",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21160",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21160.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21160"
    },
    {
      "cve": "CVE-2024-21162",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21162",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21162.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21162"
    },
    {
      "cve": "CVE-2024-21163",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21163",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21163.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21163"
    },
    {
      "cve": "CVE-2024-21165",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21165",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21165.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21165"
    },
    {
      "cve": "CVE-2024-21166",
      "cwe": {
        "id": "CWE-285",
        "name": "Improper Authorization"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authorization",
          "title": "CWE-285"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21166",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21166.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21166"
    },
    {
      "cve": "CVE-2024-21170",
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21170",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21170.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21170"
    },
    {
      "cve": "CVE-2024-21171",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21171",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21171.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21171"
    },
    {
      "cve": "CVE-2024-21173",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21173",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21173.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21173"
    },
    {
      "cve": "CVE-2024-21176",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21176",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21176.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21176"
    },
    {
      "cve": "CVE-2024-21177",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21177",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21177.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21177"
    },
    {
      "cve": "CVE-2024-21179",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21179",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21179.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21179"
    },
    {
      "cve": "CVE-2024-21185",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21185",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21185.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-21185"
    },
    {
      "cve": "CVE-2024-22257",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-221160",
          "CSAFPID-504250",
          "CSAFPID-764289",
          "CSAFPID-764290",
          "CSAFPID-764939",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22257",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22257.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-221160",
            "CSAFPID-504250",
            "CSAFPID-764289",
            "CSAFPID-764290",
            "CSAFPID-764939",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-22257"
    },
    {
      "cve": "CVE-2024-22262",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-764289",
          "CSAFPID-221160",
          "CSAFPID-764290",
          "CSAFPID-504250",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22262",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-764289",
            "CSAFPID-221160",
            "CSAFPID-764290",
            "CSAFPID-504250",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-221160",
          "CSAFPID-504250",
          "CSAFPID-764289",
          "CSAFPID-764290",
          "CSAFPID-764939",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-221160",
            "CSAFPID-504250",
            "CSAFPID-764289",
            "CSAFPID-764290",
            "CSAFPID-764939",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-25062",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-221160",
          "CSAFPID-504250",
          "CSAFPID-764289",
          "CSAFPID-764290",
          "CSAFPID-764939",
          "CSAFPID-1503653",
          "CSAFPID-1503657",
          "CSAFPID-1503659",
          "CSAFPID-764763"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-25062",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25062.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-221160",
            "CSAFPID-504250",
            "CSAFPID-764289",
            "CSAFPID-764290",
            "CSAFPID-764939",
            "CSAFPID-1503653",
            "CSAFPID-1503657",
            "CSAFPID-1503659",
            "CSAFPID-764763"
          ]
        }
      ],
      "title": "CVE-2024-25062"
    }
  ]
}

NCSC-2024-0414

Vulnerability from csaf_ncscnl - Published: 2024-10-17 13:17 - Updated: 2024-10-17 13:17

Summary

Kwetsbaarheden verholpen in Oracle Communications

Notes

Feiten: Oracle heeft kwetsbaarheden verholpen in diverse Communications producten en systemen.

Interpretaties: Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade: - Denial-of-Service (DoS) - Manipuleren van gegevens - Uitvoer van willekeurige code (Gebruikersrechten) - Uitvoer van willekeurige code (Administratorrechten) - Toegang tot gevoelige gegevens

Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans: medium

Schade: high

CWE-122: Heap-based Buffer Overflow

CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')

CWE-20: Improper Input Validation

CWE-466: Return of Pointer Value Outside of Expected Range

CWE-606: Unchecked Input for Loop Condition

CWE-390: Detection of Error Condition Without Action

CWE-405: Asymmetric Resource Consumption (Amplification)

CWE-222: Truncation of Security-relevant Information

CWE-364: Signal Handler Race Condition

CWE-450: Multiple Interpretations of UI Input

CWE-130: Improper Handling of Length Parameter Inconsistency

CWE-772: Missing Release of Resource after Effective Lifetime

CWE-669: Incorrect Resource Transfer Between Spheres

CWE-126: Buffer Over-read

CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data

CWE-755: Improper Handling of Exceptional Conditions

CWE-834: Excessive Iteration

CWE-407: Inefficient Algorithmic Complexity

CWE-754: Improper Check for Unusual or Exceptional Conditions

CWE-703: Improper Check or Handling of Exceptional Conditions

CWE-427: Uncontrolled Search Path Element

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CWE-195: Signed to Unsigned Conversion Error

CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

CWE-116: Improper Encoding or Escaping of Output

CWE-345: Insufficient Verification of Data Authenticity

CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-190: Integer Overflow or Wraparound

CWE-61: UNIX Symbolic Link (Symlink) Following

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-125: Out-of-bounds Read

CWE-404: Improper Resource Shutdown or Release

CWE-284: Improper Access Control

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-416: Use After Free

CWE-401: Missing Release of Memory after Effective Lifetime

CWE-476: NULL Pointer Dereference

CWE-459: Incomplete Cleanup

CWE-94: Improper Control of Generation of Code ('Code Injection')

CWE-400: Uncontrolled Resource Consumption

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-248: Uncaught Exception

CWE-674: Uncontrolled Recursion

CWE-918: Server-Side Request Forgery (SSRF)

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-787: Out-of-bounds Write

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CVE-2021-37137

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 155 products

Product	Identifier	Version
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.5.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:22.4.1:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.3.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.45:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:9.15:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:::::::*`	—
communications_services_gatekeeper oracle	`cpe:2.3:a:oracle:communications_services_gatekeeper:7.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.1:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.0:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.1:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.0:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.1:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.2:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.1:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.3:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.2.5:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.4.5:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:4.3:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:4.4:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:8.4:::::::*`	—
communications_unified_session_manager oracle	`cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.3:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4.0:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.2:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_session_manager oracle	`cpe:2.3:a:oracle:communications_unified_session_manager:8.4.5:::::::*`	—
communications_interactive_session_recorder oracle	`cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:::::::*`	—
communications_eagle_software oracle	`cpe:2.3:a:oracle:communications_eagle_software:46.7.0:::::::*`	—
communications_eagle_software oracle	`cpe:2.3:a:oracle:communications_eagle_software::::::::`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_session_route_manager oracle	`cpe:2.3:a:oracle:communications_session_route_manager::::::::`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.5.0.0.0:::::::*`	—
communications_evolved_communications_application_server oracle	`cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:::::::*`	—
communications_performance_intelligence_center__pic__software oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software::::::::`	—
communications_performance_intelligence_center__pic__software oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:10.4.0.3:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.4:::::::*`	—
communications_eagle_ftp_table_base_retrieval oracle	`cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:::::::*`	—
communications_eagle_lnp_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.1:::::::*`	—
communications_eagle_lnp_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.2:::::::*`	—
communications_eagle_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_application_processor:all_supported_s:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6:::::::*`	—
communications_diameter_intelligence_hub oracle	`cpe:2.3:a:oracle:communications_diameter_intelligence_hub::::::::`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:all_supported_s:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.8.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.9.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.1.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.5:::::::*`	—
communications_metasolv_solution oracle	`cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.3:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.3.5:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio::::::::`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.5:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.2.2:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.5:::::::*`	—
communications_contacts_server oracle	`cpe:2.3:a:oracle:communications_contacts_server:8.0.0.6.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.3:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—

CVE-2022-2068

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Affected products

Known affected 125 products

Product	Identifier	Version
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.1:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:22.4.1:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.3.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.45:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:9.15:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:::::::*`	—
communications_services_gatekeeper oracle	`cpe:2.3:a:oracle:communications_services_gatekeeper:7.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.1:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.0:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.1:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.0:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.1:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:8.4:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.4.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.2:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.6.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1:::::::*`	—
communications_metasolv_solution oracle	`cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.3:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0.0.0:::::::*`	—
communications_data_model oracle	`cpe:2.3:a:oracle:communications_data_model:12.2.0.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.2.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.3:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.0:::::::*`	—
communications_converged_application_server_-_service_controller oracle	`cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0:::::::*`	—
communications_evolved_communications_application_server oracle	`cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:::::::*`	—
communications_interactive_session_recorder oracle	`cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2022-2601

8.6 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 31 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2022-23437

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Known affected 271 products

Product	Identifier	Version
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.3:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.2.8.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.1.5.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.0.7.0:::::::*`	—
communications_metasolv_solution oracle	`cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.3:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.3:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.2:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.3:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.3:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.1:::::::*`	—
communications_converged_application_server_-_service_controller oracle	`cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_calendar_server oracle	`cpe:2.3:a:oracle:communications_calendar_server::::::::`	—
communications_contacts_server oracle	`cpe:2.3:a:oracle:communications_contacts_server::::::::`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.2:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0.0:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.7.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1.0.21.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0.0:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.3.5:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:22.4.1:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.3.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.45:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:9.15:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.1:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:::::::*`	—
communications_services_gatekeeper oracle	`cpe:2.3:a:oracle:communications_services_gatekeeper:7.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.1:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.0:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.1:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.0:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.1:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.2.2:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.2:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.4:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.2:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:22.0.0.0.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.3.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.3.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.3.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.3.2:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.3.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.4.1:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.11.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.2:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.3:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.3:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.4:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_converged_application_server oracle	`cpe:2.3:a:oracle:communications_converged_application_server:7.1.0:::::::*`	—
communications_converged_application_server oracle	`cpe:2.3:a:oracle:communications_converged_application_server:8.0.0:::::::*`	—
communications_diameter_intelligence_hub oracle	`cpe:2.3:a:oracle:communications_diameter_intelligence_hub:8.2.3.0:::::::*`	—
communications_performance_intelligence_center__pic__software oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:10.4.0.4.1:::::::*`	—
communications_calendar_server oracle	`cpe:2.3:a:oracle:communications_calendar_server:8.0.0.6.0:::::::*`	—
communications_contacts_server oracle	`cpe:2.3:a:oracle:communications_contacts_server:8.0.0.7.0:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.1.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.2:::::::*`	—
communications_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_elastic_charging_engine::::::::`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.6.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1.0.20.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.2.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.3:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.0:::::::*`	—
communications_converged_application_server_-_service_controller oracle	`cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0:::::::*`	—
communications_evolved_communications_application_server oracle	`cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:::::::*`	—
communications_interactive_session_recorder oracle	`cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:8.4:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.4.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0.0.0:::::::*`	—
communications_data_model oracle	`cpe:2.3:a:oracle:communications_data_model:12.2.0.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.2:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.1:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.3:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.2.5:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.4.5:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:4.3:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:4.4:::::::*`	—
communications_unified_session_manager oracle	`cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4.0:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.5.0:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_session_manager oracle	`cpe:2.3:a:oracle:communications_unified_session_manager:8.4.5:::::::*`	—
communications_eagle_software oracle	`cpe:2.3:a:oracle:communications_eagle_software:46.7.0:::::::*`	—
communications_eagle_software oracle	`cpe:2.3:a:oracle:communications_eagle_software::::::::`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_session_route_manager oracle	`cpe:2.3:a:oracle:communications_session_route_manager::::::::`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.5.0.0.0:::::::*`	—
communications_performance_intelligence_center__pic__software oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software::::::::`	—
communications_performance_intelligence_center__pic__software oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:10.4.0.3:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.4:::::::*`	—
communications_eagle_ftp_table_base_retrieval oracle	`cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:::::::*`	—
communications_eagle_lnp_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.1:::::::*`	—
communications_eagle_lnp_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.2:::::::*`	—
communications_eagle_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_application_processor:all_supported_s:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6:::::::*`	—
communications_diameter_intelligence_hub oracle	`cpe:2.3:a:oracle:communications_diameter_intelligence_hub::::::::`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:all_supported_s:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.8.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.9.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.1.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.5:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.3.5:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio::::::::`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.5:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.2.2:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.5:::::::*`	—
communications_contacts_server oracle	`cpe:2.3:a:oracle:communications_contacts_server:8.0.0.6.0:::::::*`	—
communications_lsms oracle	`cpe:2.3:a:oracle:communications_lsms:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2022-36760

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 124 products

Product	Identifier	Version
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.1:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.3:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.2:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.3:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.3:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.1:::::::*`	—
communications_converged_application_server_-_service_controller oracle	`cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_calendar_server oracle	`cpe:2.3:a:oracle:communications_calendar_server::::::::`	—
communications_contacts_server oracle	`cpe:2.3:a:oracle:communications_contacts_server::::::::`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.2:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.0.7.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.1.5.0:::::::*`	—
communications_design_studio oracle	`cpe:2.3:a:oracle:communications_design_studio:7.4.2.8.0:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.7.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1.0.21.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0.0:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.3.5:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:22.4.1:::::::*`	—
communications_cloud_native_configuration_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_configuration_console:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.3.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.2:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:8.45:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:9.15:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.1:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:::::::*`	—
communications_services_gatekeeper oracle	`cpe:2.3:a:oracle:communications_services_gatekeeper:7.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.1:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.0:::::::*`	—
communications_session_router oracle	`cpe:2.3:a:oracle:communications_session_router:9.1:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.0:::::::*`	—
communications_subscriber-aware_load_balancer oracle	`cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.1:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.6.1.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2023-2953

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Known affected 39 products

Product	Identifier	Version
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2023-3635

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-195 - Signed to Unsigned Conversion Error

Affected products

Known affected 163 products

CVE-2023-4043

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-834 - Excessive Iteration

Affected products

Known affected 176 products

CVE-2023-5685

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 107 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2023-6597

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

CWE-61 - UNIX Symbolic Link (Symlink) Following

Affected products

Known affected 94 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2023-6816

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Known affected 31 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2023-38408

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Known affected 65 products

Product	Identifier	Version
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.0.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.2.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.3:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.3:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.2.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.3.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.3:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.2.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0.0:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1.0.0:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_metasolv_solution oracle	`cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2023-43642

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 75 products

CVE-2023-46136

8.0 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-407 - Inefficient Algorithmic Complexity

Affected products

Known affected 46 products

Product	Identifier	Version
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.1.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2023-48795

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-222 - Truncation of Security-relevant Information

Affected products

Known affected 206 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.3:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.2.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.3.0:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.4.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.4:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.3.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.1:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:_signaling___23.3.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.1:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.4.53:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.2.0.0.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.2.0.0.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.2.0.0.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.2.0.0.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.3.0.0.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.3.0.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.2:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_instant_messaging_server oracle	`cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.7.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1.0.24.0:::::::*`	—
communications_metasolv_solution oracle	`cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:::::::*`	—
communications_order_and_service_management oracle	`cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:::::::*`	—
communications_eagle_application_processor oracle	`cpe:2.3:a:oracle:communications_eagle_application_processor:17.0.1:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager:9.0.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.2.8.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.1.5.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.0.7.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.3.0.0.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.3.0.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager:9.4.53:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_convergence oracle	`cpe:2.3:a:oracle:communications_convergence:3.0.3.3:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.0.7.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.1.5.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.2.8.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—

CVE-2023-51775

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 157 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2023-52428

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 98 products

CVE-2024-0450

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-450 - Multiple Interpretations of UI Input

Affected products

Known affected 105 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-2398

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-772 - Missing Release of Resource after Effective Lifetime

Affected products

Known affected 36 products

Product	Identifier	Version
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-4577

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-88 - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Affected products

Known affected 32 products

Product	Identifier	Version
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-4603

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-606 - Unchecked Input for Loop Condition

Affected products

Known affected 92 products

Product	Identifier	Version
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-5585

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-116 - Improper Encoding or Escaping of Output

Affected products

Known affected 13 products

Product	Identifier	Version
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—

CVE-2024-5971

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-674 - Uncontrolled Recursion

Affected products

Known affected 40 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-6162

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 107 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.2:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-6387

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected products

Known affected 32 products

Product	Identifier	Version
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-7254

CWE-20 - Improper Input Validation

Affected products

Known affected 36 products

Product	Identifier	Version
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-7264

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Known affected 14 products

Product	Identifier	Version
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.5:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—

CVE-2024-22020

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Known affected 33 products

Product	Identifier	Version
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0-24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-22201

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 149 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4.3.0.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-22257

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-284 - Improper Access Control

Affected products

Known affected 156 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-22262

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 106 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4-12.0.0.8:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-23672

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-459 - Incomplete Cleanup

Affected products

Known affected 144 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4-8.6.0.6:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-23807

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Known affected 103 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4.0-12.0.0.8.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4-8.6.0.8:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.1.0.0-12.0.6.0.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:::::::*`	—
communications_ip_service_activator oracle	`cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.1.0.0-12.0.6.0.0:::::::*`	—
communications_messaging_server oracle	`cpe:2.3:a:oracle:communications_messaging_server:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 137 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4-8.6.0.6:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-25062

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Known affected 157 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-25638

8.9 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L

CWE-345 - Insufficient Verification of Data Authenticity

Affected products

Known affected 34 products

Product	Identifier	Version
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-26308

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 156 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.3.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.7.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:22.4.0:::::::*`	—
communications___9.0.2 oracle	`cpe:2.3:a:oracle:communications___9.0.2::::::::`	—
communications___7.2.1.0.0 oracle	`cpe:2.3:a:oracle:communications___7.2.1.0.0::::::::`	—
communications___23.4.2 oracle	`cpe:2.3:a:oracle:communications___23.4.2::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—
communications_network_integrity oracle	`cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management::::::::`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:::::::*`	—
communications_offline_mediation_controller oracle	`cpe:2.3:a:oracle:communications_offline_mediation_controller::::::::`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:::::::*`	—
communications_fraud_monitor oracle	`cpe:2.3:a:oracle:communications_fraud_monitor:5.2:::::::*`	—
communications_webrtc_session_controller oracle	`cpe:2.3:a:oracle:communications_webrtc_session_controller::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—

CVE-2024-28182

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 116 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_performance_intelligence_center oracle	`cpe:2.3:a:oracle:communications_performance_intelligence_center:prior_to_10.4.0.4:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_certificate_management oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-28849

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 104 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-29025

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 108 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:10.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:46.6.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications___23.4.3 oracle	`cpe:2.3:a:oracle:communications___23.4.3::::::::`	—
communications___23.4.4 oracle	`cpe:2.3:a:oracle:communications___23.4.4::::::::`	—
communications___8.6.0.6 oracle	`cpe:2.3:a:oracle:communications___8.6.0.6::::::::`	—
communications___8.6.0.8 oracle	`cpe:2.3:a:oracle:communications___8.6.0.8::::::::`	—
communications___9.0.3 oracle	`cpe:2.3:a:oracle:communications___9.0.3::::::::`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-29133

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-787 - Out-of-bounds Write

Affected products

Known affected 75 products

CVE-2024-29736

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 32 products

Product	Identifier	Version
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-29857

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 93 products

Product	Identifier	Version
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function::::::::`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:::::::*`	—
communications_cloud_native_core_network_data_analytics_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:::::::*`	—
communications_cloud_native_core_network_exposure_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:::::::*`	—
communications_cloud_native_core_network_function_cloud_native_environment oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy::::::::`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:::::::*`	—
communications_diameter_signaling_router oracle	`cpe:2.3:a:oracle:communications_diameter_signaling_router::::::::`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:::::::*`	—
communications_eagle_element_management_system oracle	`cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:::::::*`	—
communications_element_manager oracle	`cpe:2.3:a:oracle:communications_element_manager::::::::`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications_performance_intelligence oracle	`cpe:2.3:a:oracle:communications_performance_intelligence:10.5:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:::::::*`	—
communications_policy_management oracle	`cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_report_manager oracle	`cpe:2.3:a:oracle:communications_session_report_manager::::::::`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:::::::*`	—
communications_asap oracle	`cpe:2.3:a:oracle:communications_asap:7.4:::::::*`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine::::::::`	—
communications_brm_-_elastic_charging_engine oracle	`cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:::::::*`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management::::::::`	—
communications_billing_and_revenue_management oracle	`cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:::::::*`	—
communications_converged_charging_system oracle	`cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller::::::::`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:::::::*`	—
communications_convergent_charging_controller oracle	`cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control::::::::`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:::::::*`	—
communications_network_charging_and_control oracle	`cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:::::::*`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center::::::::`	—
communications_pricing_design_center oracle	`cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:::::::*`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design::::::::`	—
communications_service_catalog_and_design oracle	`cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance::::::::`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:::::::*`	—
communications_unified_inventory_management oracle	`cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:::::::*`	—

CVE-2024-30251

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Known affected 32 products

Product	Identifier	Version
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-31080

CWE-126 - Buffer Over-read

Affected products

Known affected 31 products

Product	Identifier	Version
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-31744

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 35 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-32760

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 33 products

Product	Identifier	Version
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.1:::::::*`	—
communications_operations_monitor oracle	`cpe:2.3:a:oracle:communications_operations_monitor:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-33602

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-466 - Return of Pointer Value Outside of Expected Range

Affected products

Known affected 41 products

Product	Identifier	Version
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:::::::*`	—
communications_session_border_controller oracle	`cpe:2.3:a:oracle:communications_session_border_controller:9.1.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_core_session_manager oracle	`cpe:2.3:a:oracle:communications_core_session_manager:9.1.5:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-34750

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-755 - Improper Handling of Exceptional Conditions

Affected products

Known affected 35 products

Product	Identifier	Version
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:14.0:::::::*`	—
communications_user_data_repository oracle	`cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-37371

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Known affected 46 products

Product	Identifier	Version
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_service_communication_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_network_analytics_data_director oracle	`cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:::::::*`	—
communications_cloud_native_core_console oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-37891

4.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CWE-669 - Incorrect Resource Transfer Between Spheres

Affected products

Known affected 33 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-38816

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Known affected 33 products

Product	Identifier	Version
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:::::::*`	—
communications_cloud_native_core_dbtier oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-39689

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-345 - Insufficient Verification of Data Authenticity

Affected products

Known affected 4 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—

CVE-2024-40898

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 48 products

Product	Identifier	Version
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.4:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.2.2:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.1.1:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-41817

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-427 - Uncontrolled Search Path Element

Affected products

Known affected 14 products

Product	Identifier	Version
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—

CVE-2024-43044

9.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 41 products

Product	Identifier	Version
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.2.2:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.1.1:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:::::::*`	—
communications_cloud_native_core_network_slice_selection_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.0:::::::*`	—
communications_cloud_native_core_security_edge_protection_proxy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:::::::*`	—
communications_cloud_native_core_network_repository_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:::::::*`	—
communications_cloud_native_core_automated_test_suite oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

CVE-2024-45492

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Known affected 48 products

Product	Identifier	Version
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:::::::*`	—
communications_cloud_native_core_unified_data_repository oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:::::::*`	—
communications_unified_assurance oracle	`cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:::::::*`	—
communications_cloud_native_core_policy oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.5:::::::*`	—
communications_cloud_native_core_binding_support_function oracle	`cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:8.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.4.1:::::::*`	—
communications_applications oracle	`cpe:2.3:a:oracle:communications_applications:7.5.0:::::::*`	—
communications_applications___6.0.4 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.4::::::::`	—
communications_applications___6.0.5 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.5::::::::`	—
communications_applications___5.5.22 oracle	`cpe:2.3:a:oracle:communications_applications___5.5.22::::::::`	—
communications_applications___12.0.6.0.0 oracle	`cpe:2.3:a:oracle:communications_applications___12.0.6.0.0::::::::`	—
communications_applications___6.0.3 oracle	`cpe:2.3:a:oracle:communications_applications___6.0.3::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.11.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:4.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.2.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0.0.0:::::::*`	—
communications__10.4.0.4 oracle	`cpe:2.3:a:oracle:communications__10.4.0.4::::::::`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.9.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:14.0.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:17.0.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.5:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:12.6.1.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.1.1.3.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:5.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.2:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.2.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:24.1.1:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.3:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:9.0.1.10.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.4:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:15.0.0.0.0:::::::*`	—
communications oracle	`cpe:2.3:a:oracle:communications:23.4.0:::::::*`	—
communications___9.1.1.8.0 oracle	`cpe:2.3:a:oracle:communications___9.1.1.8.0::::::::`	—
communications___24.2.0 oracle	`cpe:2.3:a:oracle:communications___24.2.0::::::::`	—
communications___23.4.5 oracle	`cpe:2.3:a:oracle:communications___23.4.5::::::::`	—
communications___23.4.6 oracle	`cpe:2.3:a:oracle:communications___23.4.6::::::::`	—

References

58 references

URL	Category
https://www.oracle.com/security-alerts/cpuoct2024.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Oracle heeft kwetsbaarheden verholpen in diverse Communications producten en systemen.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipuleren van gegevens\n- Uitvoer van willekeurige code (Gebruikersrechten)\n- Uitvoer van willekeurige code (Administratorrechten)\n- Toegang tot gevoelige gegevens",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
        "title": "CWE-835"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Return of Pointer Value Outside of Expected Range",
        "title": "CWE-466"
      },
      {
        "category": "general",
        "text": "Unchecked Input for Loop Condition",
        "title": "CWE-606"
      },
      {
        "category": "general",
        "text": "Detection of Error Condition Without Action",
        "title": "CWE-390"
      },
      {
        "category": "general",
        "text": "Asymmetric Resource Consumption (Amplification)",
        "title": "CWE-405"
      },
      {
        "category": "general",
        "text": "Truncation of Security-relevant Information",
        "title": "CWE-222"
      },
      {
        "category": "general",
        "text": "Signal Handler Race Condition",
        "title": "CWE-364"
      },
      {
        "category": "general",
        "text": "Multiple Interpretations of UI Input",
        "title": "CWE-450"
      },
      {
        "category": "general",
        "text": "Improper Handling of Length Parameter Inconsistency",
        "title": "CWE-130"
      },
      {
        "category": "general",
        "text": "Missing Release of Resource after Effective Lifetime",
        "title": "CWE-772"
      },
      {
        "category": "general",
        "text": "Incorrect Resource Transfer Between Spheres",
        "title": "CWE-669"
      },
      {
        "category": "general",
        "text": "Buffer Over-read",
        "title": "CWE-126"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
        "title": "CWE-88"
      },
      {
        "category": "general",
        "text": "Acceptance of Extraneous Untrusted Data With Trusted Data",
        "title": "CWE-349"
      },
      {
        "category": "general",
        "text": "Improper Handling of Exceptional Conditions",
        "title": "CWE-755"
      },
      {
        "category": "general",
        "text": "Excessive Iteration",
        "title": "CWE-834"
      },
      {
        "category": "general",
        "text": "Inefficient Algorithmic Complexity",
        "title": "CWE-407"
      },
      {
        "category": "general",
        "text": "Improper Check for Unusual or Exceptional Conditions",
        "title": "CWE-754"
      },
      {
        "category": "general",
        "text": "Improper Check or Handling of Exceptional Conditions",
        "title": "CWE-703"
      },
      {
        "category": "general",
        "text": "Uncontrolled Search Path Element",
        "title": "CWE-427"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      },
      {
        "category": "general",
        "text": "Signed to Unsigned Conversion Error",
        "title": "CWE-195"
      },
      {
        "category": "general",
        "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
        "title": "CWE-444"
      },
      {
        "category": "general",
        "text": "Improper Encoding or Escaping of Output",
        "title": "CWE-116"
      },
      {
        "category": "general",
        "text": "Insufficient Verification of Data Authenticity",
        "title": "CWE-345"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
        "title": "CWE-77"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "UNIX Symbolic Link (Symlink) Following",
        "title": "CWE-61"
      },
      {
        "category": "general",
        "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
        "title": "CWE-362"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "Missing Release of Memory after Effective Lifetime",
        "title": "CWE-401"
      },
      {
        "category": "general",
        "text": "NULL Pointer Dereference",
        "title": "CWE-476"
      },
      {
        "category": "general",
        "text": "Incomplete Cleanup",
        "title": "CWE-459"
      },
      {
        "category": "general",
        "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
        "title": "CWE-94"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Uncaught Exception",
        "title": "CWE-248"
      },
      {
        "category": "general",
        "text": "Uncontrolled Recursion",
        "title": "CWE-674"
      },
      {
        "category": "general",
        "text": "Server-Side Request Forgery (SSRF)",
        "title": "CWE-918"
      },
      {
        "category": "general",
        "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
        "title": "CWE-22"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
        "title": "CWE-78"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; hkcert; nvd; oracle; redhat",
        "url": "https://www.oracle.com/security-alerts/cpuoct2024.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Oracle Communications",
    "tracking": {
      "current_release_date": "2024-10-17T13:17:52.103171Z",
      "id": "NCSC-2024-0414",
      "initial_release_date": "2024-10-17T13:17:52.103171Z",
      "revision_history": [
        {
          "date": "2024-10-17T13:17:52.103171Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635313",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:10.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635305",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:12.11.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635311",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:12.11.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635312",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:12.11.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635323",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:12.6.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670430",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:14.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674632",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:14.0.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674630",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:14.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635320",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674633",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:17.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670439",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635322",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670429",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670435",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670431",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670436",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670432",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635321",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635310",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635318",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674640",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674642",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:23.4.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670434",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.1.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635316",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674639",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635314",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674638",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674637",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:24.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635306",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:4.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635307",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:4.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635317",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:46.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635319",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:46.6.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670438",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635324",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635315",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:5.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670433",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674641",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.0.1.10.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674635",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674636",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.1.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1670437",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.1.1.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674631",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.1.1.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1674634",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.1.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635308",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications",
            "product": {
              "name": "communications",
              "product_id": "CSAFPID-1635309",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications:9.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications__10.4.0.4",
            "product": {
              "name": "communications__10.4.0.4",
              "product_id": "CSAFPID-1674629",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications__10.4.0.4:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___23.4.2",
            "product": {
              "name": "communications___23.4.2",
              "product_id": "CSAFPID-1670442",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___23.4.2:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___23.4.3",
            "product": {
              "name": "communications___23.4.3",
              "product_id": "CSAFPID-1635325",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___23.4.3:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___23.4.4",
            "product": {
              "name": "communications___23.4.4",
              "product_id": "CSAFPID-1635326",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___23.4.4:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___23.4.5",
            "product": {
              "name": "communications___23.4.5",
              "product_id": "CSAFPID-1674645",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___23.4.5:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___23.4.6",
            "product": {
              "name": "communications___23.4.6",
              "product_id": "CSAFPID-1674646",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___23.4.6:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___24.2.0",
            "product": {
              "name": "communications___24.2.0",
              "product_id": "CSAFPID-1674644",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___24.2.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___7.2.1.0.0",
            "product": {
              "name": "communications___7.2.1.0.0",
              "product_id": "CSAFPID-1670441",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___7.2.1.0.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___8.6.0.6",
            "product": {
              "name": "communications___8.6.0.6",
              "product_id": "CSAFPID-1635327",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___8.6.0.6:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___8.6.0.8",
            "product": {
              "name": "communications___8.6.0.8",
              "product_id": "CSAFPID-1635328",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___8.6.0.8:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___9.0.2",
            "product": {
              "name": "communications___9.0.2",
              "product_id": "CSAFPID-1670440",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___9.0.2:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___9.0.3",
            "product": {
              "name": "communications___9.0.3",
              "product_id": "CSAFPID-1635329",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___9.0.3:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications___9.1.1.8.0",
            "product": {
              "name": "communications___9.1.1.8.0",
              "product_id": "CSAFPID-1674643",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications___9.1.1.8.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674621",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674618",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674619",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:7.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674622",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:7.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674617",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674623",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications",
            "product": {
              "name": "communications_applications",
              "product_id": "CSAFPID-1674620",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications___12.0.6.0.0",
            "product": {
              "name": "communications_applications___12.0.6.0.0",
              "product_id": "CSAFPID-1674627",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications___12.0.6.0.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications___5.5.22",
            "product": {
              "name": "communications_applications___5.5.22",
              "product_id": "CSAFPID-1674626",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications___5.5.22:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications___6.0.3",
            "product": {
              "name": "communications_applications___6.0.3",
              "product_id": "CSAFPID-1674628",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications___6.0.3:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications___6.0.4",
            "product": {
              "name": "communications_applications___6.0.4",
              "product_id": "CSAFPID-1674624",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications___6.0.4:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_applications___6.0.5",
            "product": {
              "name": "communications_applications___6.0.5",
              "product_id": "CSAFPID-1674625",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_applications___6.0.5:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_asap",
            "product": {
              "name": "communications_asap",
              "product_id": "CSAFPID-204629",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_asap:7.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_asap",
            "product": {
              "name": "communications_asap",
              "product_id": "CSAFPID-1673475",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_asap:7.4.3.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_asap",
            "product": {
              "name": "communications_asap",
              "product_id": "CSAFPID-816792",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-764735",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-1650734",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4.0-12.0.0.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-204639",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-204627",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-816793",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management",
            "product": {
              "name": "communications_billing_and_revenue_management",
              "product_id": "CSAFPID-912557",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_billing_and_revenue_management__-_elastic_charging_engine",
            "product": {
              "name": "communications_billing_and_revenue_management__-_elastic_charging_engine",
              "product_id": "CSAFPID-219835",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_billing_and_revenue_management__-_elastic_charging_engine:12.0.0.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-764247",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-209548",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:11.3.0.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-209549",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:11.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-41194",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-1650820",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4-12.0.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-765241",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-209546",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-209550",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-498607",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12:0.0.5.0:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_brm_-_elastic_charging_engine",
            "product": {
              "name": "communications_brm_-_elastic_charging_engine",
              "product_id": "CSAFPID-912556",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_calendar_server",
            "product": {
              "name": "communications_calendar_server",
              "product_id": "CSAFPID-764736",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_calendar_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_calendar_server",
            "product": {
              "name": "communications_calendar_server",
              "product_id": "CSAFPID-220190",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_calendar_server:8.0.0.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_configuration_console",
            "product": {
              "name": "communications_cloud_native_configuration_console",
              "product_id": "CSAFPID-391501",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_configuration_console:22.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_configuration_console",
            "product": {
              "name": "communications_cloud_native_configuration_console",
              "product_id": "CSAFPID-440102",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_configuration_console:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-89545",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-180215",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-180197",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-220548",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-41516",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-41515",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-220057",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-220055",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-220909",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-816765",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-816766",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-816767",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-1503577",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-1673416",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-1673516",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-1673412",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_automated_test_suite",
            "product": {
              "name": "communications_cloud_native_core_automated_test_suite",
              "product_id": "CSAFPID-1673411",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-764237",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-2045",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.10.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-40612",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-608629",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-93784",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-1899",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-41111",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-1685",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-493445",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-294401",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-220547",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-764824",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-220459",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-45184",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-45182",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-45181",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-611405",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.1.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-611403",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-611404",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-1650752",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-1673396",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-912066",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_binding_support_function",
            "product": {
              "name": "communications_cloud_native_core_binding_support_function",
              "product_id": "CSAFPID-1503323",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_certificate_management",
            "product": {
              "name": "communications_cloud_native_core_certificate_management",
              "product_id": "CSAFPID-1673526",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_certificate_management",
            "product": {
              "name": "communications_cloud_native_core_certificate_management",
              "product_id": "CSAFPID-1673391",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_certificate_management",
            "product": {
              "name": "communications_cloud_native_core_certificate_management",
              "product_id": "CSAFPID-1673394",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-165550",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:1.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-93546",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-180195",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-40299",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-187447",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-45186",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-45185",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-220559",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:22.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-220558",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-764238",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-764239",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-816768",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-816769",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-912085",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-1503578",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-1673389",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_console",
            "product": {
              "name": "communications_cloud_native_core_console",
              "product_id": "CSAFPID-1673390",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_dbtier",
            "product": {
              "name": "communications_cloud_native_core_dbtier",
              "product_id": "CSAFPID-1673421",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_dbtier",
            "product": {
              "name": "communications_cloud_native_core_dbtier",
              "product_id": "CSAFPID-1673420",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_data_analytics_function",
            "product": {
              "name": "communications_cloud_native_core_network_data_analytics_function",
              "product_id": "CSAFPID-764825",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:22.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_data_analytics_function",
            "product": {
              "name": "communications_cloud_native_core_network_data_analytics_function",
              "product_id": "CSAFPID-816770",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_data_analytics_function",
            "product": {
              "name": "communications_cloud_native_core_network_data_analytics_function",
              "product_id": "CSAFPID-816771",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_data_analytics_function",
            "product": {
              "name": "communications_cloud_native_core_network_data_analytics_function",
              "product_id": "CSAFPID-912068",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_data_analytics_function",
            "product": {
              "name": "communications_cloud_native_core_network_data_analytics_function",
              "product_id": "CSAFPID-1503579",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-180201",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-1900",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-760687",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-40947",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-93635",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-503534",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-90018",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-220327",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-94290",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-220325",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-614513",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-643776",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-816772",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-912076",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_exposure_function",
            "product": {
              "name": "communications_cloud_native_core_network_exposure_function",
              "product_id": "CSAFPID-1503580",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-40613",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-2044",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-40301",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-180194",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-449747",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-40298",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-223527",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-449746",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-503493",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-260394",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-219838",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-611387",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-618156",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-816773",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912101",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-1673473",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0-24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-1503581",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912539",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912540",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912541",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912542",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_function_cloud_native_environment",
            "product": {
              "name": "communications_cloud_native_core_network_function_cloud_native_environment",
              "product_id": "CSAFPID-912543",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-40611",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-40609",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-180198",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-41112",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-41110",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-760688",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-493444",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-93633",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-220056",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-223511",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-216017",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-220889",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-614516",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-816774",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-220918",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-614515",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-614514",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-816346",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-912077",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-1503322",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-1673413",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-1673415",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-816775",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_repository_function",
            "product": {
              "name": "communications_cloud_native_core_network_repository_function",
              "product_id": "CSAFPID-912544",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-40608",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-180199",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-41113",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-260395",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-260393",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-816348",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-912545",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-816347",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-1673494",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-1673501",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-816776",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_network_slice_selection_function",
            "product": {
              "name": "communications_cloud_native_core_network_slice_selection_function",
              "product_id": "CSAFPID-816777",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-764240",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-220468",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.11.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-2310",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-93547",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-180200",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-180193",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-1898",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-93636",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-90020",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-90015",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-220133",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-1650751",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-1673517",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-1673395",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-912069",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_policy",
            "product": {
              "name": "communications_cloud_native_core_policy",
              "product_id": "CSAFPID-765371",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:all_supported_s:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-180216",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-180202",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-40300",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-93653",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-40949",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-642000",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-93634",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-220561",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-90021",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-94292",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-218028",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-220881",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-94291",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-220910",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-220324",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-611401",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-816778",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-614517",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-912547",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-1673392",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-1503582",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-1673393",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_security_edge_protection_proxy",
            "product": {
              "name": "communications_cloud_native_core_security_edge_protection_proxy",
              "product_id": "CSAFPID-912546",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-40610",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-611587",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-642002",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.2.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-493443",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-642001",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-224796",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-224795",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-912548",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-912102",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-912549",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-1503583",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-1503584",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-1503585",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_service_communication_proxy",
            "product": {
              "name": "communications_cloud_native_core_service_communication_proxy",
              "product_id": "CSAFPID-1672767",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-180217",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-180196",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-165576",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-40297",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-764899",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-589926",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-179780",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.2.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-40948",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-589925",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-179779",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.3.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-764826",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-90019",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-90016",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-220326",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-764241",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-912078",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-816349",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-912550",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-1503586",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-1503587",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-1673399",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_cloud_native_core_unified_data_repository",
            "product": {
              "name": "communications_cloud_native_core_unified_data_repository",
              "product_id": "CSAFPID-816779",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:_signaling___23.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_contacts_server",
            "product": {
              "name": "communications_contacts_server",
              "product_id": "CSAFPID-764737",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_contacts_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_contacts_server",
            "product": {
              "name": "communications_contacts_server",
              "product_id": "CSAFPID-224787",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_contacts_server:8.0.0.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_contacts_server",
            "product": {
              "name": "communications_contacts_server",
              "product_id": "CSAFPID-220189",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_contacts_server:8.0.0.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_application_server",
            "product": {
              "name": "communications_converged_application_server",
              "product_id": "CSAFPID-764827",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_application_server:7.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_application_server",
            "product": {
              "name": "communications_converged_application_server",
              "product_id": "CSAFPID-764828",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_application_server:8.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_application_server_-_service_controller",
            "product": {
              "name": "communications_converged_application_server_-_service_controller",
              "product_id": "CSAFPID-764734",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_application_server_-_service_controller",
            "product": {
              "name": "communications_converged_application_server_-_service_controller",
              "product_id": "CSAFPID-426842",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_charging_system",
            "product": {
              "name": "communications_converged_charging_system",
              "product_id": "CSAFPID-1503599",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_converged_charging_system",
            "product": {
              "name": "communications_converged_charging_system",
              "product_id": "CSAFPID-1503600",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergence",
            "product": {
              "name": "communications_convergence",
              "product_id": "CSAFPID-345031",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergence:3.0.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergence",
            "product": {
              "name": "communications_convergence",
              "product_id": "CSAFPID-204635",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergence:3.0.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergence",
            "product": {
              "name": "communications_convergence",
              "product_id": "CSAFPID-764833",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergence:3.0.3.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergence",
            "product": {
              "name": "communications_convergence",
              "product_id": "CSAFPID-224793",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergence:3.0.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergence",
            "product": {
              "name": "communications_convergence",
              "product_id": "CSAFPID-816794",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergence:3.0.3.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-342793",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-1650777",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.1.0.0-12.0.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-1265",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-764248",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-816350",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_convergent_charging_controller",
            "product": {
              "name": "communications_convergent_charging_controller",
              "product_id": "CSAFPID-1261",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_core_session_manager",
            "product": {
              "name": "communications_core_session_manager",
              "product_id": "CSAFPID-110244",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_core_session_manager:8.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_core_session_manager",
            "product": {
              "name": "communications_core_session_manager",
              "product_id": "CSAFPID-110242",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_core_session_manager:8.4.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_core_session_manager",
            "product": {
              "name": "communications_core_session_manager",
              "product_id": "CSAFPID-93777",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_core_session_manager:8.45:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_core_session_manager",
            "product": {
              "name": "communications_core_session_manager",
              "product_id": "CSAFPID-1672764",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_core_session_manager:9.1.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_core_session_manager",
            "product": {
              "name": "communications_core_session_manager",
              "product_id": "CSAFPID-93772",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_core_session_manager:9.15:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_data_model",
            "product": {
              "name": "communications_data_model",
              "product_id": "CSAFPID-764902",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_data_model:12.2.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-765372",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-342799",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.3.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-704412",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.4.0.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-704411",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.4.1.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-165544",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.4.2.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-704410",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.4.2.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_design_studio",
            "product": {
              "name": "communications_design_studio",
              "product_id": "CSAFPID-41183",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_design_studio:7.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_intelligence_hub",
            "product": {
              "name": "communications_diameter_intelligence_hub",
              "product_id": "CSAFPID-342802",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_intelligence_hub:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_intelligence_hub",
            "product": {
              "name": "communications_diameter_intelligence_hub",
              "product_id": "CSAFPID-764829",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_intelligence_hub:8.2.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1503588",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1892",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1891",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1888",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1887",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1889",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1884",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.3.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1885",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1882",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1881",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1883",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1879",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1880",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-40293",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1650826",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4-8.6.0.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-1650830",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4-8.6.0.8:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-611413",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-912551",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_diameter_signaling_router",
            "product": {
              "name": "communications_diameter_signaling_router",
              "product_id": "CSAFPID-912552",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_application_processor",
            "product": {
              "name": "communications_eagle_application_processor",
              "product_id": "CSAFPID-1673417",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_application_processor:17.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_application_processor",
            "product": {
              "name": "communications_eagle_application_processor",
              "product_id": "CSAFPID-765369",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_application_processor:all_supported_s:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_element_management_system",
            "product": {
              "name": "communications_eagle_element_management_system",
              "product_id": "CSAFPID-1503316",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_element_management_system",
            "product": {
              "name": "communications_eagle_element_management_system",
              "product_id": "CSAFPID-1503317",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_element_management_system",
            "product": {
              "name": "communications_eagle_element_management_system",
              "product_id": "CSAFPID-204528",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_ftp_table_base_retrieval",
            "product": {
              "name": "communications_eagle_ftp_table_base_retrieval",
              "product_id": "CSAFPID-204623",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_lnp_application_processor",
            "product": {
              "name": "communications_eagle_lnp_application_processor",
              "product_id": "CSAFPID-352633",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_lnp_application_processor",
            "product": {
              "name": "communications_eagle_lnp_application_processor",
              "product_id": "CSAFPID-352632",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_software",
            "product": {
              "name": "communications_eagle_software",
              "product_id": "CSAFPID-765366",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_software:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_eagle_software",
            "product": {
              "name": "communications_eagle_software",
              "product_id": "CSAFPID-765365",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_eagle_software:46.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_elastic_charging_engine",
            "product": {
              "name": "communications_elastic_charging_engine",
              "product_id": "CSAFPID-764834",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_elastic_charging_engine:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-764242",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-204597",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-204580",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-9226",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-204589",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-9070",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-8845",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-204624",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-2286",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-204464",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:8.2.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-345038",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:9.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-93629",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:9.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-611422",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:9.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-93630",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_element_manager",
            "product": {
              "name": "communications_element_manager",
              "product_id": "CSAFPID-816780",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_element_manager:9.4.53:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_evolved_communications_application_server",
            "product": {
              "name": "communications_evolved_communications_application_server",
              "product_id": "CSAFPID-204645",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_fraud_monitor",
            "product": {
              "name": "communications_fraud_monitor",
              "product_id": "CSAFPID-816781",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_fraud_monitor:5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_fraud_monitor",
            "product": {
              "name": "communications_fraud_monitor",
              "product_id": "CSAFPID-816782",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_fraud_monitor:5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_fraud_monitor",
            "product": {
              "name": "communications_fraud_monitor",
              "product_id": "CSAFPID-912553",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_fraud_monitor:5.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_instant_messaging_server",
            "product": {
              "name": "communications_instant_messaging_server",
              "product_id": "CSAFPID-207586",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_instant_messaging_server",
            "product": {
              "name": "communications_instant_messaging_server",
              "product_id": "CSAFPID-234306",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_instant_messaging_server",
            "product": {
              "name": "communications_instant_messaging_server",
              "product_id": "CSAFPID-219803",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_instant_messaging_server",
            "product": {
              "name": "communications_instant_messaging_server",
              "product_id": "CSAFPID-387664",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_instant_messaging_server:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_interactive_session_recorder",
            "product": {
              "name": "communications_interactive_session_recorder",
              "product_id": "CSAFPID-1893",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_ip_service_activator",
            "product": {
              "name": "communications_ip_service_activator",
              "product_id": "CSAFPID-204622",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_ip_service_activator",
            "product": {
              "name": "communications_ip_service_activator",
              "product_id": "CSAFPID-219909",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_lsms",
            "product": {
              "name": "communications_lsms",
              "product_id": "CSAFPID-1673065",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_lsms:14.0.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_messaging_server",
            "product": {
              "name": "communications_messaging_server",
              "product_id": "CSAFPID-764835",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_messaging_server:8.1.0.20.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_messaging_server",
            "product": {
              "name": "communications_messaging_server",
              "product_id": "CSAFPID-375182",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_messaging_server:8.1.0.21.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_messaging_server",
            "product": {
              "name": "communications_messaging_server",
              "product_id": "CSAFPID-816351",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_messaging_server:8.1.0.24.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_messaging_server",
            "product": {
              "name": "communications_messaging_server",
              "product_id": "CSAFPID-41182",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_metasolv_solution",
            "product": {
              "name": "communications_metasolv_solution",
              "product_id": "CSAFPID-611595",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_metasolv_solution",
            "product": {
              "name": "communications_metasolv_solution",
              "product_id": "CSAFPID-226017",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-220167",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816353",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.2.0.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-764243",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816352",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.3.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-1503589",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-1503590",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-1673414",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816783",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.2.0.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816786",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.3.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816784",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.2.0.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816787",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.3.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816785",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.2.0.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_analytics_data_director",
            "product": {
              "name": "communications_network_analytics_data_director",
              "product_id": "CSAFPID-816788",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.3.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-342803",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-1650778",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.1.0.0-12.0.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-1266",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-764249",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-816354",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_charging_and_control",
            "product": {
              "name": "communications_network_charging_and_control",
              "product_id": "CSAFPID-204563",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_integrity",
            "product": {
              "name": "communications_network_integrity",
              "product_id": "CSAFPID-220125",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_integrity:7.3.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_integrity",
            "product": {
              "name": "communications_network_integrity",
              "product_id": "CSAFPID-245244",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_integrity:7.3.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_integrity",
            "product": {
              "name": "communications_network_integrity",
              "product_id": "CSAFPID-219776",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_network_integrity",
            "product": {
              "name": "communications_network_integrity",
              "product_id": "CSAFPID-204554",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_offline_mediation_controller",
            "product": {
              "name": "communications_offline_mediation_controller",
              "product_id": "CSAFPID-765242",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_offline_mediation_controller:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_operations_monitor",
            "product": {
              "name": "communications_operations_monitor",
              "product_id": "CSAFPID-9489",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_operations_monitor",
            "product": {
              "name": "communications_operations_monitor",
              "product_id": "CSAFPID-110249",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_operations_monitor",
            "product": {
              "name": "communications_operations_monitor",
              "product_id": "CSAFPID-93781",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_operations_monitor",
            "product": {
              "name": "communications_operations_monitor",
              "product_id": "CSAFPID-220132",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_operations_monitor:5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_operations_monitor",
            "product": {
              "name": "communications_operations_monitor",
              "product_id": "CSAFPID-912079",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_operations_monitor:5.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-224791",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.3.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-219898",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-224790",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-221118",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-179774",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_order_and_service_management",
            "product": {
              "name": "communications_order_and_service_management",
              "product_id": "CSAFPID-1673496",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_order_and_service_management:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_performance_intelligence",
            "product": {
              "name": "communications_performance_intelligence",
              "product_id": "CSAFPID-1503591",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_performance_intelligence:10.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_performance_intelligence_center",
            "product": {
              "name": "communications_performance_intelligence_center",
              "product_id": "CSAFPID-1673485",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_performance_intelligence_center:prior_to_10.4.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_performance_intelligence_center__pic__software",
            "product": {
              "name": "communications_performance_intelligence_center__pic__software",
              "product_id": "CSAFPID-765367",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_performance_intelligence_center__pic__software",
            "product": {
              "name": "communications_performance_intelligence_center__pic__software",
              "product_id": "CSAFPID-765368",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:10.4.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_performance_intelligence_center__pic__software",
            "product": {
              "name": "communications_performance_intelligence_center__pic__software",
              "product_id": "CSAFPID-764830",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_performance_intelligence_center__pic__software:10.4.0.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_policy_management",
            "product": {
              "name": "communications_policy_management",
              "product_id": "CSAFPID-573035",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_policy_management:12.5.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_policy_management",
            "product": {
              "name": "communications_policy_management",
              "product_id": "CSAFPID-45192",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_policy_management",
            "product": {
              "name": "communications_policy_management",
              "product_id": "CSAFPID-611406",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_policy_management:12.6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_policy_management",
            "product": {
              "name": "communications_policy_management",
              "product_id": "CSAFPID-816789",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_policy_management",
            "product": {
              "name": "communications_policy_management",
              "product_id": "CSAFPID-816790",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_pricing_design_center",
            "product": {
              "name": "communications_pricing_design_center",
              "product_id": "CSAFPID-764738",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_pricing_design_center:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_pricing_design_center",
            "product": {
              "name": "communications_pricing_design_center",
              "product_id": "CSAFPID-204595",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_pricing_design_center",
            "product": {
              "name": "communications_pricing_design_center",
              "product_id": "CSAFPID-204590",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_pricing_design_center",
            "product": {
              "name": "communications_pricing_design_center",
              "product_id": "CSAFPID-816355",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-1503601",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816359",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.0.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816358",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.1.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816357",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.2.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-912558",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-1503602",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816795",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.0.7.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816796",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.1.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_service_catalog_and_design",
            "product": {
              "name": "communications_service_catalog_and_design",
              "product_id": "CSAFPID-816797",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.2.8.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_services_gatekeeper",
            "product": {
              "name": "communications_services_gatekeeper",
              "product_id": "CSAFPID-608630",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_services_gatekeeper:7.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-1503592",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-1503593",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-40294",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-40292",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-1672762",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:9.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-40291",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-1503594",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_border_controller",
            "product": {
              "name": "communications_session_border_controller",
              "product_id": "CSAFPID-1503595",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-342804",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-704413",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:-:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2296",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-166028",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2294",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2292",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2290",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2288",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2282",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2285",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-2279",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-204634",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:8.2.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-345039",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:9.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-93628",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:9.0.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-611423",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:9.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-93631",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_report_manager",
            "product": {
              "name": "communications_session_report_manager",
              "product_id": "CSAFPID-816791",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_report_manager:9.4.53:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-342805",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-704414",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:-:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-166027",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2295",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2293",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.1.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2289",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2291",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2287",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2283",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.2.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2284",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2280",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-2281",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-220414",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_route_manager",
            "product": {
              "name": "communications_session_route_manager",
              "product_id": "CSAFPID-204607",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_route_manager:8.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_router",
            "product": {
              "name": "communications_session_router",
              "product_id": "CSAFPID-764780",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_router:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_session_router",
            "product": {
              "name": "communications_session_router",
              "product_id": "CSAFPID-764781",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_session_router:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_subscriber-aware_load_balancer",
            "product": {
              "name": "communications_subscriber-aware_load_balancer",
              "product_id": "CSAFPID-93775",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_subscriber-aware_load_balancer",
            "product": {
              "name": "communications_subscriber-aware_load_balancer",
              "product_id": "CSAFPID-93774",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-240600",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1673382",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-78764",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:5.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-78763",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:5.5.10:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1673070",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:5.5.22:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1673381",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1650731",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1673530",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-764901",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-78762",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-78761",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-614089",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_assurance",
            "product": {
              "name": "communications_unified_assurance",
              "product_id": "CSAFPID-1673068",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.0.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-764739",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-204614",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-8984",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-204510",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-204569",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-219826",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_inventory_management",
            "product": {
              "name": "communications_unified_inventory_management",
              "product_id": "CSAFPID-912073",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_session_manager",
            "product": {
              "name": "communications_unified_session_manager",
              "product_id": "CSAFPID-110243",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_unified_session_manager",
            "product": {
              "name": "communications_unified_session_manager",
              "product_id": "CSAFPID-205759",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_unified_session_manager:8.4.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-1503596",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-1503597",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-1503598",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-764900",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-76994",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.4:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-568240",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-764782",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.6.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-355340",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:12.6.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-912080",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_user_data_repository",
            "product": {
              "name": "communications_user_data_repository",
              "product_id": "CSAFPID-1673481",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_user_data_repository:14.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_webrtc_session_controller",
            "product": {
              "name": "communications_webrtc_session_controller",
              "product_id": "CSAFPID-912554",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_webrtc_session_controller:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_webrtc_session_controller",
            "product": {
              "name": "communications_webrtc_session_controller",
              "product_id": "CSAFPID-611408",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_webrtc_session_controller",
            "product": {
              "name": "communications_webrtc_session_controller",
              "product_id": "CSAFPID-703515",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_webrtc_session_controller",
            "product": {
              "name": "communications_webrtc_session_controller",
              "product_id": "CSAFPID-611407",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "communications_webrtc_session_controller",
            "product": {
              "name": "communications_webrtc_session_controller",
              "product_id": "CSAFPID-204456",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-37137",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-41182",
          "CSAFPID-209546",
          "CSAFPID-40608",
          "CSAFPID-180216",
          "CSAFPID-93547",
          "CSAFPID-180217",
          "CSAFPID-2310",
          "CSAFPID-40612",
          "CSAFPID-391501",
          "CSAFPID-440102",
          "CSAFPID-41516",
          "CSAFPID-41515",
          "CSAFPID-764237",
          "CSAFPID-45182",
          "CSAFPID-45181",
          "CSAFPID-45186",
          "CSAFPID-45185",
          "CSAFPID-90018",
          "CSAFPID-94290",
          "CSAFPID-260394",
          "CSAFPID-216017",
          "CSAFPID-764240",
          "CSAFPID-90021",
          "CSAFPID-94292",
          "CSAFPID-218028",
          "CSAFPID-94291",
          "CSAFPID-493443",
          "CSAFPID-224796",
          "CSAFPID-90019",
          "CSAFPID-90016",
          "CSAFPID-93777",
          "CSAFPID-93772",
          "CSAFPID-40293",
          "CSAFPID-345038",
          "CSAFPID-93629",
          "CSAFPID-93781",
          "CSAFPID-45192",
          "CSAFPID-608630",
          "CSAFPID-40292",
          "CSAFPID-40291",
          "CSAFPID-345039",
          "CSAFPID-93628",
          "CSAFPID-764780",
          "CSAFPID-764781",
          "CSAFPID-93775",
          "CSAFPID-93774",
          "CSAFPID-764782",
          "CSAFPID-342793",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-342803",
          "CSAFPID-204563",
          "CSAFPID-221118",
          "CSAFPID-240600",
          "CSAFPID-8984",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-1899",
          "CSAFPID-41111",
          "CSAFPID-40299",
          "CSAFPID-187447",
          "CSAFPID-1900",
          "CSAFPID-40301",
          "CSAFPID-180194",
          "CSAFPID-40298",
          "CSAFPID-41112",
          "CSAFPID-41110",
          "CSAFPID-41113",
          "CSAFPID-180193",
          "CSAFPID-1898",
          "CSAFPID-40300",
          "CSAFPID-611587",
          "CSAFPID-40297",
          "CSAFPID-110244",
          "CSAFPID-110242",
          "CSAFPID-9489",
          "CSAFPID-110249",
          "CSAFPID-40294",
          "CSAFPID-110243",
          "CSAFPID-204629",
          "CSAFPID-765241",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-41183",
          "CSAFPID-207586",
          "CSAFPID-765242",
          "CSAFPID-205759",
          "CSAFPID-1893",
          "CSAFPID-765365",
          "CSAFPID-765366",
          "CSAFPID-342804",
          "CSAFPID-342805",
          "CSAFPID-204456",
          "CSAFPID-1882",
          "CSAFPID-573035",
          "CSAFPID-204645",
          "CSAFPID-765367",
          "CSAFPID-765368",
          "CSAFPID-764242",
          "CSAFPID-76994",
          "CSAFPID-204623",
          "CSAFPID-352633",
          "CSAFPID-352632",
          "CSAFPID-765369",
          "CSAFPID-204528",
          "CSAFPID-342802",
          "CSAFPID-40610",
          "CSAFPID-40611",
          "CSAFPID-40609",
          "CSAFPID-180198",
          "CSAFPID-180196",
          "CSAFPID-180201",
          "CSAFPID-180202",
          "CSAFPID-40613",
          "CSAFPID-180199",
          "CSAFPID-93546",
          "CSAFPID-180195",
          "CSAFPID-180200",
          "CSAFPID-765371",
          "CSAFPID-89545",
          "CSAFPID-180215",
          "CSAFPID-180197",
          "CSAFPID-204639",
          "CSAFPID-204627",
          "CSAFPID-226017",
          "CSAFPID-219898",
          "CSAFPID-179774",
          "CSAFPID-342799",
          "CSAFPID-765372",
          "CSAFPID-220125",
          "CSAFPID-245244",
          "CSAFPID-204554",
          "CSAFPID-764739",
          "CSAFPID-204614",
          "CSAFPID-345031",
          "CSAFPID-204635",
          "CSAFPID-204595",
          "CSAFPID-204590",
          "CSAFPID-224787",
          "CSAFPID-1673381",
          "CSAFPID-1673382",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-37137",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-37137.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-41182",
            "CSAFPID-209546",
            "CSAFPID-40608",
            "CSAFPID-180216",
            "CSAFPID-93547",
            "CSAFPID-180217",
            "CSAFPID-2310",
            "CSAFPID-40612",
            "CSAFPID-391501",
            "CSAFPID-440102",
            "CSAFPID-41516",
            "CSAFPID-41515",
            "CSAFPID-764237",
            "CSAFPID-45182",
            "CSAFPID-45181",
            "CSAFPID-45186",
            "CSAFPID-45185",
            "CSAFPID-90018",
            "CSAFPID-94290",
            "CSAFPID-260394",
            "CSAFPID-216017",
            "CSAFPID-764240",
            "CSAFPID-90021",
            "CSAFPID-94292",
            "CSAFPID-218028",
            "CSAFPID-94291",
            "CSAFPID-493443",
            "CSAFPID-224796",
            "CSAFPID-90019",
            "CSAFPID-90016",
            "CSAFPID-93777",
            "CSAFPID-93772",
            "CSAFPID-40293",
            "CSAFPID-345038",
            "CSAFPID-93629",
            "CSAFPID-93781",
            "CSAFPID-45192",
            "CSAFPID-608630",
            "CSAFPID-40292",
            "CSAFPID-40291",
            "CSAFPID-345039",
            "CSAFPID-93628",
            "CSAFPID-764780",
            "CSAFPID-764781",
            "CSAFPID-93775",
            "CSAFPID-93774",
            "CSAFPID-764782",
            "CSAFPID-342793",
            "CSAFPID-1261",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-342803",
            "CSAFPID-204563",
            "CSAFPID-221118",
            "CSAFPID-240600",
            "CSAFPID-8984",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-1899",
            "CSAFPID-41111",
            "CSAFPID-40299",
            "CSAFPID-187447",
            "CSAFPID-1900",
            "CSAFPID-40301",
            "CSAFPID-180194",
            "CSAFPID-40298",
            "CSAFPID-41112",
            "CSAFPID-41110",
            "CSAFPID-41113",
            "CSAFPID-180193",
            "CSAFPID-1898",
            "CSAFPID-40300",
            "CSAFPID-611587",
            "CSAFPID-40297",
            "CSAFPID-110244",
            "CSAFPID-110242",
            "CSAFPID-9489",
            "CSAFPID-110249",
            "CSAFPID-40294",
            "CSAFPID-110243",
            "CSAFPID-204629",
            "CSAFPID-765241",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-41183",
            "CSAFPID-207586",
            "CSAFPID-765242",
            "CSAFPID-205759",
            "CSAFPID-1893",
            "CSAFPID-765365",
            "CSAFPID-765366",
            "CSAFPID-342804",
            "CSAFPID-342805",
            "CSAFPID-204456",
            "CSAFPID-1882",
            "CSAFPID-573035",
            "CSAFPID-204645",
            "CSAFPID-765367",
            "CSAFPID-765368",
            "CSAFPID-764242",
            "CSAFPID-76994",
            "CSAFPID-204623",
            "CSAFPID-352633",
            "CSAFPID-352632",
            "CSAFPID-765369",
            "CSAFPID-204528",
            "CSAFPID-342802",
            "CSAFPID-40610",
            "CSAFPID-40611",
            "CSAFPID-40609",
            "CSAFPID-180198",
            "CSAFPID-180196",
            "CSAFPID-180201",
            "CSAFPID-180202",
            "CSAFPID-40613",
            "CSAFPID-180199",
            "CSAFPID-93546",
            "CSAFPID-180195",
            "CSAFPID-180200",
            "CSAFPID-765371",
            "CSAFPID-89545",
            "CSAFPID-180215",
            "CSAFPID-180197",
            "CSAFPID-204639",
            "CSAFPID-204627",
            "CSAFPID-226017",
            "CSAFPID-219898",
            "CSAFPID-179774",
            "CSAFPID-342799",
            "CSAFPID-765372",
            "CSAFPID-220125",
            "CSAFPID-245244",
            "CSAFPID-204554",
            "CSAFPID-764739",
            "CSAFPID-204614",
            "CSAFPID-345031",
            "CSAFPID-204635",
            "CSAFPID-204595",
            "CSAFPID-204590",
            "CSAFPID-224787",
            "CSAFPID-1673381",
            "CSAFPID-1673382",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628"
          ]
        }
      ],
      "title": "CVE-2021-37137"
    },
    {
      "cve": "CVE-2022-2068",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
          "title": "CWE-77"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-40949",
          "CSAFPID-391501",
          "CSAFPID-440102",
          "CSAFPID-41516",
          "CSAFPID-41515",
          "CSAFPID-764237",
          "CSAFPID-45182",
          "CSAFPID-45181",
          "CSAFPID-45186",
          "CSAFPID-45185",
          "CSAFPID-90018",
          "CSAFPID-94290",
          "CSAFPID-260394",
          "CSAFPID-216017",
          "CSAFPID-764240",
          "CSAFPID-90021",
          "CSAFPID-94292",
          "CSAFPID-218028",
          "CSAFPID-94291",
          "CSAFPID-493443",
          "CSAFPID-224796",
          "CSAFPID-90019",
          "CSAFPID-90016",
          "CSAFPID-93777",
          "CSAFPID-93772",
          "CSAFPID-40293",
          "CSAFPID-345038",
          "CSAFPID-93629",
          "CSAFPID-93781",
          "CSAFPID-45192",
          "CSAFPID-608630",
          "CSAFPID-40292",
          "CSAFPID-40291",
          "CSAFPID-345039",
          "CSAFPID-93628",
          "CSAFPID-764780",
          "CSAFPID-764781",
          "CSAFPID-93775",
          "CSAFPID-93774",
          "CSAFPID-764782",
          "CSAFPID-342793",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-342803",
          "CSAFPID-204563",
          "CSAFPID-221118",
          "CSAFPID-240600",
          "CSAFPID-8984",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-40294",
          "CSAFPID-93631",
          "CSAFPID-764900",
          "CSAFPID-568240",
          "CSAFPID-355340",
          "CSAFPID-703515",
          "CSAFPID-204456",
          "CSAFPID-764735",
          "CSAFPID-204635",
          "CSAFPID-41183",
          "CSAFPID-234306",
          "CSAFPID-41182",
          "CSAFPID-226017",
          "CSAFPID-219898",
          "CSAFPID-179774",
          "CSAFPID-764738",
          "CSAFPID-764901",
          "CSAFPID-764902",
          "CSAFPID-220547",
          "CSAFPID-187447",
          "CSAFPID-760687",
          "CSAFPID-40947",
          "CSAFPID-2044",
          "CSAFPID-449747",
          "CSAFPID-40301",
          "CSAFPID-449746",
          "CSAFPID-40298",
          "CSAFPID-223527",
          "CSAFPID-760688",
          "CSAFPID-93636",
          "CSAFPID-40300",
          "CSAFPID-93653",
          "CSAFPID-642000",
          "CSAFPID-642002",
          "CSAFPID-642001",
          "CSAFPID-165576",
          "CSAFPID-764899",
          "CSAFPID-40948",
          "CSAFPID-426842",
          "CSAFPID-93630",
          "CSAFPID-204645",
          "CSAFPID-1893",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-2068",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2068.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-40949",
            "CSAFPID-391501",
            "CSAFPID-440102",
            "CSAFPID-41516",
            "CSAFPID-41515",
            "CSAFPID-764237",
            "CSAFPID-45182",
            "CSAFPID-45181",
            "CSAFPID-45186",
            "CSAFPID-45185",
            "CSAFPID-90018",
            "CSAFPID-94290",
            "CSAFPID-260394",
            "CSAFPID-216017",
            "CSAFPID-764240",
            "CSAFPID-90021",
            "CSAFPID-94292",
            "CSAFPID-218028",
            "CSAFPID-94291",
            "CSAFPID-493443",
            "CSAFPID-224796",
            "CSAFPID-90019",
            "CSAFPID-90016",
            "CSAFPID-93777",
            "CSAFPID-93772",
            "CSAFPID-40293",
            "CSAFPID-345038",
            "CSAFPID-93629",
            "CSAFPID-93781",
            "CSAFPID-45192",
            "CSAFPID-608630",
            "CSAFPID-40292",
            "CSAFPID-40291",
            "CSAFPID-345039",
            "CSAFPID-93628",
            "CSAFPID-764780",
            "CSAFPID-764781",
            "CSAFPID-93775",
            "CSAFPID-93774",
            "CSAFPID-764782",
            "CSAFPID-342793",
            "CSAFPID-1261",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-342803",
            "CSAFPID-204563",
            "CSAFPID-221118",
            "CSAFPID-240600",
            "CSAFPID-8984",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-40294",
            "CSAFPID-93631",
            "CSAFPID-764900",
            "CSAFPID-568240",
            "CSAFPID-355340",
            "CSAFPID-703515",
            "CSAFPID-204456",
            "CSAFPID-764735",
            "CSAFPID-204635",
            "CSAFPID-41183",
            "CSAFPID-234306",
            "CSAFPID-41182",
            "CSAFPID-226017",
            "CSAFPID-219898",
            "CSAFPID-179774",
            "CSAFPID-764738",
            "CSAFPID-764901",
            "CSAFPID-764902",
            "CSAFPID-220547",
            "CSAFPID-187447",
            "CSAFPID-760687",
            "CSAFPID-40947",
            "CSAFPID-2044",
            "CSAFPID-449747",
            "CSAFPID-40301",
            "CSAFPID-449746",
            "CSAFPID-40298",
            "CSAFPID-223527",
            "CSAFPID-760688",
            "CSAFPID-93636",
            "CSAFPID-40300",
            "CSAFPID-93653",
            "CSAFPID-642000",
            "CSAFPID-642002",
            "CSAFPID-642001",
            "CSAFPID-165576",
            "CSAFPID-764899",
            "CSAFPID-40948",
            "CSAFPID-426842",
            "CSAFPID-93630",
            "CSAFPID-204645",
            "CSAFPID-1893",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2022-2068"
    },
    {
      "cve": "CVE-2022-2601",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-2601",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2601.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2022-2601"
    },
    {
      "cve": "CVE-2022-23437",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
          "title": "CWE-835"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-204629",
          "CSAFPID-704410",
          "CSAFPID-704411",
          "CSAFPID-704412",
          "CSAFPID-226017",
          "CSAFPID-179774",
          "CSAFPID-219898",
          "CSAFPID-219826",
          "CSAFPID-204569",
          "CSAFPID-204510",
          "CSAFPID-220057",
          "CSAFPID-220055",
          "CSAFPID-220909",
          "CSAFPID-45184",
          "CSAFPID-45182",
          "CSAFPID-220559",
          "CSAFPID-220558",
          "CSAFPID-220327",
          "CSAFPID-220325",
          "CSAFPID-219838",
          "CSAFPID-220056",
          "CSAFPID-223511",
          "CSAFPID-216017",
          "CSAFPID-220889",
          "CSAFPID-220918",
          "CSAFPID-90020",
          "CSAFPID-90015",
          "CSAFPID-220133",
          "CSAFPID-220561",
          "CSAFPID-90021",
          "CSAFPID-220881",
          "CSAFPID-94291",
          "CSAFPID-220910",
          "CSAFPID-220324",
          "CSAFPID-224796",
          "CSAFPID-224795",
          "CSAFPID-220326",
          "CSAFPID-764734",
          "CSAFPID-40293",
          "CSAFPID-220167",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764736",
          "CSAFPID-764737",
          "CSAFPID-224793",
          "CSAFPID-342793",
          "CSAFPID-1265",
          "CSAFPID-219803",
          "CSAFPID-375182",
          "CSAFPID-342803",
          "CSAFPID-1266",
          "CSAFPID-219776",
          "CSAFPID-224791",
          "CSAFPID-224790",
          "CSAFPID-221118",
          "CSAFPID-764738",
          "CSAFPID-240600",
          "CSAFPID-764739",
          "CSAFPID-391501",
          "CSAFPID-440102",
          "CSAFPID-41516",
          "CSAFPID-41515",
          "CSAFPID-764237",
          "CSAFPID-45181",
          "CSAFPID-45186",
          "CSAFPID-45185",
          "CSAFPID-90018",
          "CSAFPID-94290",
          "CSAFPID-260394",
          "CSAFPID-764240",
          "CSAFPID-94292",
          "CSAFPID-218028",
          "CSAFPID-493443",
          "CSAFPID-90019",
          "CSAFPID-90016",
          "CSAFPID-93777",
          "CSAFPID-93772",
          "CSAFPID-345038",
          "CSAFPID-93629",
          "CSAFPID-45192",
          "CSAFPID-608630",
          "CSAFPID-40292",
          "CSAFPID-40291",
          "CSAFPID-345039",
          "CSAFPID-93628",
          "CSAFPID-764780",
          "CSAFPID-764781",
          "CSAFPID-93775",
          "CSAFPID-93774",
          "CSAFPID-764782",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-204563",
          "CSAFPID-8984",
          "CSAFPID-220548",
          "CSAFPID-608629",
          "CSAFPID-93784",
          "CSAFPID-41111",
          "CSAFPID-1685",
          "CSAFPID-493445",
          "CSAFPID-294401",
          "CSAFPID-220547",
          "CSAFPID-764824",
          "CSAFPID-220459",
          "CSAFPID-764825",
          "CSAFPID-93635",
          "CSAFPID-503534",
          "CSAFPID-503493",
          "CSAFPID-493444",
          "CSAFPID-93633",
          "CSAFPID-260395",
          "CSAFPID-260393",
          "CSAFPID-220468",
          "CSAFPID-93636",
          "CSAFPID-93634",
          "CSAFPID-589926",
          "CSAFPID-179780",
          "CSAFPID-589925",
          "CSAFPID-179779",
          "CSAFPID-764826",
          "CSAFPID-764827",
          "CSAFPID-764828",
          "CSAFPID-764829",
          "CSAFPID-764830",
          "CSAFPID-220190",
          "CSAFPID-220189",
          "CSAFPID-764833",
          "CSAFPID-41183",
          "CSAFPID-764834",
          "CSAFPID-234306",
          "CSAFPID-764835",
          "CSAFPID-187447",
          "CSAFPID-760687",
          "CSAFPID-40947",
          "CSAFPID-2044",
          "CSAFPID-449747",
          "CSAFPID-40301",
          "CSAFPID-449746",
          "CSAFPID-40298",
          "CSAFPID-223527",
          "CSAFPID-760688",
          "CSAFPID-40300",
          "CSAFPID-93653",
          "CSAFPID-40949",
          "CSAFPID-642000",
          "CSAFPID-642002",
          "CSAFPID-642001",
          "CSAFPID-165576",
          "CSAFPID-764899",
          "CSAFPID-40948",
          "CSAFPID-426842",
          "CSAFPID-93630",
          "CSAFPID-204645",
          "CSAFPID-1893",
          "CSAFPID-40294",
          "CSAFPID-93631",
          "CSAFPID-764900",
          "CSAFPID-568240",
          "CSAFPID-355340",
          "CSAFPID-703515",
          "CSAFPID-204456",
          "CSAFPID-204635",
          "CSAFPID-41182",
          "CSAFPID-764901",
          "CSAFPID-764902",
          "CSAFPID-1899",
          "CSAFPID-40299",
          "CSAFPID-1900",
          "CSAFPID-180194",
          "CSAFPID-41112",
          "CSAFPID-41110",
          "CSAFPID-41113",
          "CSAFPID-180193",
          "CSAFPID-1898",
          "CSAFPID-611587",
          "CSAFPID-40297",
          "CSAFPID-110244",
          "CSAFPID-110242",
          "CSAFPID-9489",
          "CSAFPID-110249",
          "CSAFPID-110243",
          "CSAFPID-765241",
          "CSAFPID-209546",
          "CSAFPID-207586",
          "CSAFPID-765242",
          "CSAFPID-205759",
          "CSAFPID-765365",
          "CSAFPID-765366",
          "CSAFPID-342804",
          "CSAFPID-342805",
          "CSAFPID-1882",
          "CSAFPID-573035",
          "CSAFPID-765367",
          "CSAFPID-765368",
          "CSAFPID-764242",
          "CSAFPID-76994",
          "CSAFPID-204623",
          "CSAFPID-352633",
          "CSAFPID-352632",
          "CSAFPID-765369",
          "CSAFPID-204528",
          "CSAFPID-342802",
          "CSAFPID-40610",
          "CSAFPID-40611",
          "CSAFPID-40609",
          "CSAFPID-180198",
          "CSAFPID-180217",
          "CSAFPID-180196",
          "CSAFPID-40612",
          "CSAFPID-180201",
          "CSAFPID-180216",
          "CSAFPID-180202",
          "CSAFPID-40613",
          "CSAFPID-40608",
          "CSAFPID-180199",
          "CSAFPID-93546",
          "CSAFPID-180195",
          "CSAFPID-2310",
          "CSAFPID-93547",
          "CSAFPID-180200",
          "CSAFPID-765371",
          "CSAFPID-89545",
          "CSAFPID-180215",
          "CSAFPID-180197",
          "CSAFPID-204639",
          "CSAFPID-204627",
          "CSAFPID-342799",
          "CSAFPID-765372",
          "CSAFPID-220125",
          "CSAFPID-245244",
          "CSAFPID-204554",
          "CSAFPID-204614",
          "CSAFPID-345031",
          "CSAFPID-204595",
          "CSAFPID-204590",
          "CSAFPID-224787",
          "CSAFPID-1673065",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-23437",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-23437.json"
        }
      ],
      "title": "CVE-2022-23437"
    },
    {
      "cve": "CVE-2022-36760",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-220057",
          "CSAFPID-220055",
          "CSAFPID-220909",
          "CSAFPID-45184",
          "CSAFPID-45182",
          "CSAFPID-220559",
          "CSAFPID-220558",
          "CSAFPID-220327",
          "CSAFPID-220325",
          "CSAFPID-219838",
          "CSAFPID-220056",
          "CSAFPID-223511",
          "CSAFPID-216017",
          "CSAFPID-220889",
          "CSAFPID-220918",
          "CSAFPID-90020",
          "CSAFPID-90015",
          "CSAFPID-220133",
          "CSAFPID-220561",
          "CSAFPID-90021",
          "CSAFPID-220881",
          "CSAFPID-94291",
          "CSAFPID-220910",
          "CSAFPID-220324",
          "CSAFPID-224796",
          "CSAFPID-224795",
          "CSAFPID-220326",
          "CSAFPID-764734",
          "CSAFPID-40293",
          "CSAFPID-220167",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764736",
          "CSAFPID-764737",
          "CSAFPID-224793",
          "CSAFPID-342793",
          "CSAFPID-1265",
          "CSAFPID-704412",
          "CSAFPID-704411",
          "CSAFPID-704410",
          "CSAFPID-219803",
          "CSAFPID-375182",
          "CSAFPID-342803",
          "CSAFPID-1266",
          "CSAFPID-219776",
          "CSAFPID-224791",
          "CSAFPID-224790",
          "CSAFPID-221118",
          "CSAFPID-764738",
          "CSAFPID-240600",
          "CSAFPID-764739",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-391501",
          "CSAFPID-440102",
          "CSAFPID-41516",
          "CSAFPID-41515",
          "CSAFPID-764237",
          "CSAFPID-45181",
          "CSAFPID-45186",
          "CSAFPID-45185",
          "CSAFPID-90018",
          "CSAFPID-94290",
          "CSAFPID-260394",
          "CSAFPID-764240",
          "CSAFPID-94292",
          "CSAFPID-218028",
          "CSAFPID-493443",
          "CSAFPID-90019",
          "CSAFPID-90016",
          "CSAFPID-93777",
          "CSAFPID-93772",
          "CSAFPID-345038",
          "CSAFPID-93629",
          "CSAFPID-45192",
          "CSAFPID-608630",
          "CSAFPID-40292",
          "CSAFPID-40291",
          "CSAFPID-345039",
          "CSAFPID-93628",
          "CSAFPID-764780",
          "CSAFPID-764781",
          "CSAFPID-93775",
          "CSAFPID-93774",
          "CSAFPID-764782",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-204563",
          "CSAFPID-8984",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-36760",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36760.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-220057",
            "CSAFPID-220055",
            "CSAFPID-220909",
            "CSAFPID-45184",
            "CSAFPID-45182",
            "CSAFPID-220559",
            "CSAFPID-220558",
            "CSAFPID-220327",
            "CSAFPID-220325",
            "CSAFPID-219838",
            "CSAFPID-220056",
            "CSAFPID-223511",
            "CSAFPID-216017",
            "CSAFPID-220889",
            "CSAFPID-220918",
            "CSAFPID-90020",
            "CSAFPID-90015",
            "CSAFPID-220133",
            "CSAFPID-220561",
            "CSAFPID-90021",
            "CSAFPID-220881",
            "CSAFPID-94291",
            "CSAFPID-220910",
            "CSAFPID-220324",
            "CSAFPID-224796",
            "CSAFPID-224795",
            "CSAFPID-220326",
            "CSAFPID-764734",
            "CSAFPID-40293",
            "CSAFPID-220167",
            "CSAFPID-93781",
            "CSAFPID-220132",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764736",
            "CSAFPID-764737",
            "CSAFPID-224793",
            "CSAFPID-342793",
            "CSAFPID-1265",
            "CSAFPID-704412",
            "CSAFPID-704411",
            "CSAFPID-704410",
            "CSAFPID-219803",
            "CSAFPID-375182",
            "CSAFPID-342803",
            "CSAFPID-1266",
            "CSAFPID-219776",
            "CSAFPID-224791",
            "CSAFPID-224790",
            "CSAFPID-221118",
            "CSAFPID-764738",
            "CSAFPID-240600",
            "CSAFPID-764739",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-391501",
            "CSAFPID-440102",
            "CSAFPID-41516",
            "CSAFPID-41515",
            "CSAFPID-764237",
            "CSAFPID-45181",
            "CSAFPID-45186",
            "CSAFPID-45185",
            "CSAFPID-90018",
            "CSAFPID-94290",
            "CSAFPID-260394",
            "CSAFPID-764240",
            "CSAFPID-94292",
            "CSAFPID-218028",
            "CSAFPID-493443",
            "CSAFPID-90019",
            "CSAFPID-90016",
            "CSAFPID-93777",
            "CSAFPID-93772",
            "CSAFPID-345038",
            "CSAFPID-93629",
            "CSAFPID-45192",
            "CSAFPID-608630",
            "CSAFPID-40292",
            "CSAFPID-40291",
            "CSAFPID-345039",
            "CSAFPID-93628",
            "CSAFPID-764780",
            "CSAFPID-764781",
            "CSAFPID-93775",
            "CSAFPID-93774",
            "CSAFPID-764782",
            "CSAFPID-1261",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-204563",
            "CSAFPID-8984",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2022-36760"
    },
    {
      "cve": "CVE-2023-2953",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "other",
          "text": "NULL Pointer Dereference",
          "title": "CWE-476"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1673391",
          "CSAFPID-1673392",
          "CSAFPID-1673393",
          "CSAFPID-1673394",
          "CSAFPID-1673395",
          "CSAFPID-1673396",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-2953",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2953.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1673391",
            "CSAFPID-1673392",
            "CSAFPID-1673393",
            "CSAFPID-1673394",
            "CSAFPID-1673395",
            "CSAFPID-1673396",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2023-2953"
    },
    {
      "cve": "CVE-2023-3635",
      "cwe": {
        "id": "CWE-195",
        "name": "Signed to Unsigned Conversion Error"
      },
      "notes": [
        {
          "category": "other",
          "text": "Signed to Unsigned Conversion Error",
          "title": "CWE-195"
        },
        {
          "category": "other",
          "text": "Uncaught Exception",
          "title": "CWE-248"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-94291",
          "CSAFPID-40293",
          "CSAFPID-204622",
          "CSAFPID-1265",
          "CSAFPID-1261",
          "CSAFPID-1266",
          "CSAFPID-8984",
          "CSAFPID-1673399",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912077",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-219909",
          "CSAFPID-220558",
          "CSAFPID-221118",
          "CSAFPID-224790",
          "CSAFPID-240600",
          "CSAFPID-342804",
          "CSAFPID-611387",
          "CSAFPID-611401",
          "CSAFPID-611406",
          "CSAFPID-611407",
          "CSAFPID-611408",
          "CSAFPID-611413",
          "CSAFPID-611595",
          "CSAFPID-204510",
          "CSAFPID-204563",
          "CSAFPID-204569",
          "CSAFPID-219803",
          "CSAFPID-219838",
          "CSAFPID-224793",
          "CSAFPID-342793",
          "CSAFPID-342803",
          "CSAFPID-614513",
          "CSAFPID-614514",
          "CSAFPID-614515",
          "CSAFPID-614516",
          "CSAFPID-614517",
          "CSAFPID-618156",
          "CSAFPID-643776",
          "CSAFPID-764237",
          "CSAFPID-764238",
          "CSAFPID-764239",
          "CSAFPID-764240",
          "CSAFPID-764241",
          "CSAFPID-764242",
          "CSAFPID-764243",
          "CSAFPID-764247",
          "CSAFPID-764248",
          "CSAFPID-764249",
          "CSAFPID-816346",
          "CSAFPID-816347",
          "CSAFPID-816348",
          "CSAFPID-816349",
          "CSAFPID-816350",
          "CSAFPID-816351",
          "CSAFPID-816352",
          "CSAFPID-816353",
          "CSAFPID-816354",
          "CSAFPID-816355",
          "CSAFPID-816357",
          "CSAFPID-816358",
          "CSAFPID-816359",
          "CSAFPID-816765",
          "CSAFPID-816766",
          "CSAFPID-816767",
          "CSAFPID-816768",
          "CSAFPID-816769",
          "CSAFPID-816770",
          "CSAFPID-816771",
          "CSAFPID-816772",
          "CSAFPID-816773",
          "CSAFPID-816774",
          "CSAFPID-816775",
          "CSAFPID-816776",
          "CSAFPID-816777",
          "CSAFPID-816778",
          "CSAFPID-816779",
          "CSAFPID-816780",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-816783",
          "CSAFPID-816784",
          "CSAFPID-816785",
          "CSAFPID-816786",
          "CSAFPID-816787",
          "CSAFPID-816788",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-816791",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-816794",
          "CSAFPID-816795",
          "CSAFPID-816796",
          "CSAFPID-816797",
          "CSAFPID-764735",
          "CSAFPID-764738",
          "CSAFPID-912073",
          "CSAFPID-912078",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-90016",
          "CSAFPID-93781",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-224795",
          "CSAFPID-912102",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-764739",
          "CSAFPID-764826",
          "CSAFPID-765242"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-3635",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3635.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-94291",
            "CSAFPID-40293",
            "CSAFPID-204622",
            "CSAFPID-1265",
            "CSAFPID-1261",
            "CSAFPID-1266",
            "CSAFPID-8984",
            "CSAFPID-1673399",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912077",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-219909",
            "CSAFPID-220558",
            "CSAFPID-221118",
            "CSAFPID-224790",
            "CSAFPID-240600",
            "CSAFPID-342804",
            "CSAFPID-611387",
            "CSAFPID-611401",
            "CSAFPID-611406",
            "CSAFPID-611407",
            "CSAFPID-611408",
            "CSAFPID-611413",
            "CSAFPID-611595",
            "CSAFPID-204510",
            "CSAFPID-204563",
            "CSAFPID-204569",
            "CSAFPID-219803",
            "CSAFPID-219838",
            "CSAFPID-224793",
            "CSAFPID-342793",
            "CSAFPID-342803",
            "CSAFPID-614513",
            "CSAFPID-614514",
            "CSAFPID-614515",
            "CSAFPID-614516",
            "CSAFPID-614517",
            "CSAFPID-618156",
            "CSAFPID-643776",
            "CSAFPID-764237",
            "CSAFPID-764238",
            "CSAFPID-764239",
            "CSAFPID-764240",
            "CSAFPID-764241",
            "CSAFPID-764242",
            "CSAFPID-764243",
            "CSAFPID-764247",
            "CSAFPID-764248",
            "CSAFPID-764249",
            "CSAFPID-816346",
            "CSAFPID-816347",
            "CSAFPID-816348",
            "CSAFPID-816349",
            "CSAFPID-816350",
            "CSAFPID-816351",
            "CSAFPID-816352",
            "CSAFPID-816353",
            "CSAFPID-816354",
            "CSAFPID-816355",
            "CSAFPID-816357",
            "CSAFPID-816358",
            "CSAFPID-816359",
            "CSAFPID-816765",
            "CSAFPID-816766",
            "CSAFPID-816767",
            "CSAFPID-816768",
            "CSAFPID-816769",
            "CSAFPID-816770",
            "CSAFPID-816771",
            "CSAFPID-816772",
            "CSAFPID-816773",
            "CSAFPID-816774",
            "CSAFPID-816775",
            "CSAFPID-816776",
            "CSAFPID-816777",
            "CSAFPID-816778",
            "CSAFPID-816779",
            "CSAFPID-816780",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-816783",
            "CSAFPID-816784",
            "CSAFPID-816785",
            "CSAFPID-816786",
            "CSAFPID-816787",
            "CSAFPID-816788",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-816791",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-816794",
            "CSAFPID-816795",
            "CSAFPID-816796",
            "CSAFPID-816797",
            "CSAFPID-764735",
            "CSAFPID-764738",
            "CSAFPID-912073",
            "CSAFPID-912078",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-90016",
            "CSAFPID-93781",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-224795",
            "CSAFPID-912102",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-764739",
            "CSAFPID-764826",
            "CSAFPID-765242"
          ]
        }
      ],
      "title": "CVE-2023-3635"
    },
    {
      "cve": "CVE-2023-4043",
      "cwe": {
        "id": "CWE-834",
        "name": "Excessive Iteration"
      },
      "notes": [
        {
          "category": "other",
          "text": "Excessive Iteration",
          "title": "CWE-834"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-816765",
          "CSAFPID-816766",
          "CSAFPID-816767",
          "CSAFPID-816768",
          "CSAFPID-816769",
          "CSAFPID-816770",
          "CSAFPID-816771",
          "CSAFPID-816772",
          "CSAFPID-219838",
          "CSAFPID-611387",
          "CSAFPID-816773",
          "CSAFPID-816774",
          "CSAFPID-816775",
          "CSAFPID-816346",
          "CSAFPID-816776",
          "CSAFPID-816348",
          "CSAFPID-816777",
          "CSAFPID-816347",
          "CSAFPID-94291",
          "CSAFPID-816778",
          "CSAFPID-614517",
          "CSAFPID-816779",
          "CSAFPID-816349",
          "CSAFPID-40293",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-816780",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-816783",
          "CSAFPID-816784",
          "CSAFPID-816785",
          "CSAFPID-816353",
          "CSAFPID-816786",
          "CSAFPID-816787",
          "CSAFPID-816788",
          "CSAFPID-816352",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-342804",
          "CSAFPID-816791",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-224793",
          "CSAFPID-816794",
          "CSAFPID-342793",
          "CSAFPID-1265",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912077",
          "CSAFPID-912545",
          "CSAFPID-764240",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-224795",
          "CSAFPID-912548",
          "CSAFPID-912102",
          "CSAFPID-912549",
          "CSAFPID-764826",
          "CSAFPID-90016",
          "CSAFPID-912078",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-219776",
          "CSAFPID-765242",
          "CSAFPID-1266",
          "CSAFPID-8984",
          "CSAFPID-204510",
          "CSAFPID-204563",
          "CSAFPID-204569",
          "CSAFPID-219803",
          "CSAFPID-219909",
          "CSAFPID-221118",
          "CSAFPID-224790",
          "CSAFPID-240600",
          "CSAFPID-342803",
          "CSAFPID-611595",
          "CSAFPID-764738",
          "CSAFPID-816351",
          "CSAFPID-816354",
          "CSAFPID-816355",
          "CSAFPID-816357",
          "CSAFPID-816358",
          "CSAFPID-816359",
          "CSAFPID-816795",
          "CSAFPID-816796",
          "CSAFPID-816797",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-219826",
          "CSAFPID-764739",
          "CSAFPID-912073",
          "CSAFPID-912558"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-4043",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-4043.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-816765",
            "CSAFPID-816766",
            "CSAFPID-816767",
            "CSAFPID-816768",
            "CSAFPID-816769",
            "CSAFPID-816770",
            "CSAFPID-816771",
            "CSAFPID-816772",
            "CSAFPID-219838",
            "CSAFPID-611387",
            "CSAFPID-816773",
            "CSAFPID-816774",
            "CSAFPID-816775",
            "CSAFPID-816346",
            "CSAFPID-816776",
            "CSAFPID-816348",
            "CSAFPID-816777",
            "CSAFPID-816347",
            "CSAFPID-94291",
            "CSAFPID-816778",
            "CSAFPID-614517",
            "CSAFPID-816779",
            "CSAFPID-816349",
            "CSAFPID-40293",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-816780",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-816783",
            "CSAFPID-816784",
            "CSAFPID-816785",
            "CSAFPID-816353",
            "CSAFPID-816786",
            "CSAFPID-816787",
            "CSAFPID-816788",
            "CSAFPID-816352",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-342804",
            "CSAFPID-816791",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-224793",
            "CSAFPID-816794",
            "CSAFPID-342793",
            "CSAFPID-1265",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-204622",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912077",
            "CSAFPID-912545",
            "CSAFPID-764240",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-224795",
            "CSAFPID-912548",
            "CSAFPID-912102",
            "CSAFPID-912549",
            "CSAFPID-764826",
            "CSAFPID-90016",
            "CSAFPID-912078",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-93781",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-219776",
            "CSAFPID-765242",
            "CSAFPID-1266",
            "CSAFPID-8984",
            "CSAFPID-204510",
            "CSAFPID-204563",
            "CSAFPID-204569",
            "CSAFPID-219803",
            "CSAFPID-219909",
            "CSAFPID-221118",
            "CSAFPID-224790",
            "CSAFPID-240600",
            "CSAFPID-342803",
            "CSAFPID-611595",
            "CSAFPID-764738",
            "CSAFPID-816351",
            "CSAFPID-816354",
            "CSAFPID-816355",
            "CSAFPID-816357",
            "CSAFPID-816358",
            "CSAFPID-816359",
            "CSAFPID-816795",
            "CSAFPID-816796",
            "CSAFPID-816797",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-219826",
            "CSAFPID-764739",
            "CSAFPID-912073",
            "CSAFPID-912558"
          ]
        }
      ],
      "title": "CVE-2023-4043"
    },
    {
      "cve": "CVE-2023-5685",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650752",
          "CSAFPID-1650751",
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-5685",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5685.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650752",
            "CSAFPID-1650751",
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2023-5685"
    },
    {
      "cve": "CVE-2023-6597",
      "cwe": {
        "id": "CWE-61",
        "name": "UNIX Symbolic Link (Symlink) Following"
      },
      "notes": [
        {
          "category": "other",
          "text": "UNIX Symbolic Link (Symlink) Following",
          "title": "CWE-61"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1673396",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-6597",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-6597.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1673396",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2023-6597"
    },
    {
      "cve": "CVE-2023-6816",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-6816",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-6816.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2023-6816"
    },
    {
      "cve": "CVE-2023-38408",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
          "title": "CWE-94"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-45182",
          "CSAFPID-40293",
          "CSAFPID-611406",
          "CSAFPID-764237",
          "CSAFPID-220558",
          "CSAFPID-764238",
          "CSAFPID-764239",
          "CSAFPID-614513",
          "CSAFPID-643776",
          "CSAFPID-611387",
          "CSAFPID-618156",
          "CSAFPID-614516",
          "CSAFPID-614515",
          "CSAFPID-614514",
          "CSAFPID-764240",
          "CSAFPID-94291",
          "CSAFPID-611401",
          "CSAFPID-614517",
          "CSAFPID-764241",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-764243",
          "CSAFPID-342804",
          "CSAFPID-611408",
          "CSAFPID-611407",
          "CSAFPID-764247",
          "CSAFPID-764248",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-611595",
          "CSAFPID-764249",
          "CSAFPID-224790",
          "CSAFPID-221118",
          "CSAFPID-240600",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-38408",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38408.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-45182",
            "CSAFPID-40293",
            "CSAFPID-611406",
            "CSAFPID-764237",
            "CSAFPID-220558",
            "CSAFPID-764238",
            "CSAFPID-764239",
            "CSAFPID-614513",
            "CSAFPID-643776",
            "CSAFPID-611387",
            "CSAFPID-618156",
            "CSAFPID-614516",
            "CSAFPID-614515",
            "CSAFPID-614514",
            "CSAFPID-764240",
            "CSAFPID-94291",
            "CSAFPID-611401",
            "CSAFPID-614517",
            "CSAFPID-764241",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-764243",
            "CSAFPID-342804",
            "CSAFPID-611408",
            "CSAFPID-611407",
            "CSAFPID-764247",
            "CSAFPID-764248",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-611595",
            "CSAFPID-764249",
            "CSAFPID-224790",
            "CSAFPID-221118",
            "CSAFPID-240600",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2023-38408"
    },
    {
      "cve": "CVE-2023-43642",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-40293",
          "CSAFPID-1265",
          "CSAFPID-1261",
          "CSAFPID-1266",
          "CSAFPID-8984",
          "CSAFPID-1673395",
          "CSAFPID-94291",
          "CSAFPID-204510",
          "CSAFPID-204563",
          "CSAFPID-204569",
          "CSAFPID-204622",
          "CSAFPID-219803",
          "CSAFPID-219838",
          "CSAFPID-219909",
          "CSAFPID-221118",
          "CSAFPID-224790",
          "CSAFPID-224793",
          "CSAFPID-240600",
          "CSAFPID-342793",
          "CSAFPID-342803",
          "CSAFPID-342804",
          "CSAFPID-611387",
          "CSAFPID-611413",
          "CSAFPID-611595",
          "CSAFPID-614517",
          "CSAFPID-764242",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764738",
          "CSAFPID-816346",
          "CSAFPID-816347",
          "CSAFPID-816348",
          "CSAFPID-816349",
          "CSAFPID-816350",
          "CSAFPID-816351",
          "CSAFPID-816352",
          "CSAFPID-816353",
          "CSAFPID-816354",
          "CSAFPID-816355",
          "CSAFPID-816357",
          "CSAFPID-816358",
          "CSAFPID-816359",
          "CSAFPID-816765",
          "CSAFPID-816766",
          "CSAFPID-816767",
          "CSAFPID-816768",
          "CSAFPID-816769",
          "CSAFPID-816770",
          "CSAFPID-816771",
          "CSAFPID-816772",
          "CSAFPID-816773",
          "CSAFPID-816774",
          "CSAFPID-816775",
          "CSAFPID-816776",
          "CSAFPID-816777",
          "CSAFPID-816778",
          "CSAFPID-816779",
          "CSAFPID-816780",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-816783",
          "CSAFPID-816784",
          "CSAFPID-816785",
          "CSAFPID-816786",
          "CSAFPID-816787",
          "CSAFPID-816788",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-816791",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-816794",
          "CSAFPID-816795",
          "CSAFPID-816796",
          "CSAFPID-816797"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-43642",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-43642.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-40293",
            "CSAFPID-1265",
            "CSAFPID-1261",
            "CSAFPID-1266",
            "CSAFPID-8984",
            "CSAFPID-1673395",
            "CSAFPID-94291",
            "CSAFPID-204510",
            "CSAFPID-204563",
            "CSAFPID-204569",
            "CSAFPID-204622",
            "CSAFPID-219803",
            "CSAFPID-219838",
            "CSAFPID-219909",
            "CSAFPID-221118",
            "CSAFPID-224790",
            "CSAFPID-224793",
            "CSAFPID-240600",
            "CSAFPID-342793",
            "CSAFPID-342803",
            "CSAFPID-342804",
            "CSAFPID-611387",
            "CSAFPID-611413",
            "CSAFPID-611595",
            "CSAFPID-614517",
            "CSAFPID-764242",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764738",
            "CSAFPID-816346",
            "CSAFPID-816347",
            "CSAFPID-816348",
            "CSAFPID-816349",
            "CSAFPID-816350",
            "CSAFPID-816351",
            "CSAFPID-816352",
            "CSAFPID-816353",
            "CSAFPID-816354",
            "CSAFPID-816355",
            "CSAFPID-816357",
            "CSAFPID-816358",
            "CSAFPID-816359",
            "CSAFPID-816765",
            "CSAFPID-816766",
            "CSAFPID-816767",
            "CSAFPID-816768",
            "CSAFPID-816769",
            "CSAFPID-816770",
            "CSAFPID-816771",
            "CSAFPID-816772",
            "CSAFPID-816773",
            "CSAFPID-816774",
            "CSAFPID-816775",
            "CSAFPID-816776",
            "CSAFPID-816777",
            "CSAFPID-816778",
            "CSAFPID-816779",
            "CSAFPID-816780",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-816783",
            "CSAFPID-816784",
            "CSAFPID-816785",
            "CSAFPID-816786",
            "CSAFPID-816787",
            "CSAFPID-816788",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-816791",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-816794",
            "CSAFPID-816795",
            "CSAFPID-816796",
            "CSAFPID-816797"
          ]
        }
      ],
      "title": "CVE-2023-43642"
    },
    {
      "cve": "CVE-2023-46136",
      "cwe": {
        "id": "CWE-407",
        "name": "Inefficient Algorithmic Complexity"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inefficient Algorithmic Complexity",
          "title": "CWE-407"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673411",
          "CSAFPID-912549",
          "CSAFPID-1673412",
          "CSAFPID-1673413",
          "CSAFPID-1673414",
          "CSAFPID-1673396",
          "CSAFPID-1503590",
          "CSAFPID-1673393",
          "CSAFPID-1673395",
          "CSAFPID-220132",
          "CSAFPID-1503585",
          "CSAFPID-1673392",
          "CSAFPID-1503589",
          "CSAFPID-1673415",
          "CSAFPID-1673416",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-46136",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46136.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673411",
            "CSAFPID-912549",
            "CSAFPID-1673412",
            "CSAFPID-1673413",
            "CSAFPID-1673414",
            "CSAFPID-1673396",
            "CSAFPID-1503590",
            "CSAFPID-1673393",
            "CSAFPID-1673395",
            "CSAFPID-220132",
            "CSAFPID-1503585",
            "CSAFPID-1673392",
            "CSAFPID-1503589",
            "CSAFPID-1673415",
            "CSAFPID-1673416",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2023-46136"
    },
    {
      "cve": "CVE-2023-48795",
      "cwe": {
        "id": "CWE-222",
        "name": "Truncation of Security-relevant Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Truncation of Security-relevant Information",
          "title": "CWE-222"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650752",
          "CSAFPID-816765",
          "CSAFPID-816766",
          "CSAFPID-816767",
          "CSAFPID-816768",
          "CSAFPID-816769",
          "CSAFPID-816770",
          "CSAFPID-816771",
          "CSAFPID-816772",
          "CSAFPID-219838",
          "CSAFPID-611387",
          "CSAFPID-816773",
          "CSAFPID-816774",
          "CSAFPID-816775",
          "CSAFPID-816346",
          "CSAFPID-816776",
          "CSAFPID-816348",
          "CSAFPID-816777",
          "CSAFPID-816347",
          "CSAFPID-94291",
          "CSAFPID-816778",
          "CSAFPID-614517",
          "CSAFPID-816779",
          "CSAFPID-816349",
          "CSAFPID-40293",
          "CSAFPID-764242",
          "CSAFPID-816780",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-816783",
          "CSAFPID-816784",
          "CSAFPID-816785",
          "CSAFPID-816353",
          "CSAFPID-816786",
          "CSAFPID-816352",
          "CSAFPID-342804",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-224793",
          "CSAFPID-342793",
          "CSAFPID-1265",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-219803",
          "CSAFPID-816351",
          "CSAFPID-611595",
          "CSAFPID-342803",
          "CSAFPID-1266",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-224790",
          "CSAFPID-221118",
          "CSAFPID-1673417",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-912076",
          "CSAFPID-912077",
          "CSAFPID-912078",
          "CSAFPID-90016",
          "CSAFPID-764826",
          "CSAFPID-345038",
          "CSAFPID-912079",
          "CSAFPID-220132",
          "CSAFPID-93781",
          "CSAFPID-345039",
          "CSAFPID-912080",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-764240",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-224795",
          "CSAFPID-912548",
          "CSAFPID-611413",
          "CSAFPID-240600",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-816357",
          "CSAFPID-816358",
          "CSAFPID-816359",
          "CSAFPID-816787",
          "CSAFPID-816788",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-816791",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-816794",
          "CSAFPID-816795",
          "CSAFPID-816796",
          "CSAFPID-816797",
          "CSAFPID-8984",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-764739",
          "CSAFPID-765242",
          "CSAFPID-912073",
          "CSAFPID-912102",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-1503601",
          "CSAFPID-1503602"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-48795",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650752",
            "CSAFPID-816765",
            "CSAFPID-816766",
            "CSAFPID-816767",
            "CSAFPID-816768",
            "CSAFPID-816769",
            "CSAFPID-816770",
            "CSAFPID-816771",
            "CSAFPID-816772",
            "CSAFPID-219838",
            "CSAFPID-611387",
            "CSAFPID-816773",
            "CSAFPID-816774",
            "CSAFPID-816775",
            "CSAFPID-816346",
            "CSAFPID-816776",
            "CSAFPID-816348",
            "CSAFPID-816777",
            "CSAFPID-816347",
            "CSAFPID-94291",
            "CSAFPID-816778",
            "CSAFPID-614517",
            "CSAFPID-816779",
            "CSAFPID-816349",
            "CSAFPID-40293",
            "CSAFPID-764242",
            "CSAFPID-816780",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-816783",
            "CSAFPID-816784",
            "CSAFPID-816785",
            "CSAFPID-816353",
            "CSAFPID-816786",
            "CSAFPID-816352",
            "CSAFPID-342804",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-224793",
            "CSAFPID-342793",
            "CSAFPID-1265",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-219803",
            "CSAFPID-816351",
            "CSAFPID-611595",
            "CSAFPID-342803",
            "CSAFPID-1266",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-224790",
            "CSAFPID-221118",
            "CSAFPID-1673417",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-912076",
            "CSAFPID-912077",
            "CSAFPID-912078",
            "CSAFPID-90016",
            "CSAFPID-764826",
            "CSAFPID-345038",
            "CSAFPID-912079",
            "CSAFPID-220132",
            "CSAFPID-93781",
            "CSAFPID-345039",
            "CSAFPID-912080",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-764240",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-224795",
            "CSAFPID-912548",
            "CSAFPID-611413",
            "CSAFPID-240600",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-816357",
            "CSAFPID-816358",
            "CSAFPID-816359",
            "CSAFPID-816787",
            "CSAFPID-816788",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-816791",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-816794",
            "CSAFPID-816795",
            "CSAFPID-816796",
            "CSAFPID-816797",
            "CSAFPID-8984",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-764739",
            "CSAFPID-765242",
            "CSAFPID-912073",
            "CSAFPID-912102",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-1503601",
            "CSAFPID-1503602"
          ]
        }
      ],
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-51775",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650751",
          "CSAFPID-1673395",
          "CSAFPID-1673396",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-90016",
          "CSAFPID-93781",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-224795",
          "CSAFPID-342804",
          "CSAFPID-611387",
          "CSAFPID-611413",
          "CSAFPID-614517",
          "CSAFPID-764237",
          "CSAFPID-764240",
          "CSAFPID-764242",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-764826",
          "CSAFPID-765242",
          "CSAFPID-816348",
          "CSAFPID-816773",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-912068",
          "CSAFPID-912073",
          "CSAFPID-912076",
          "CSAFPID-912077",
          "CSAFPID-912078",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912085",
          "CSAFPID-912101",
          "CSAFPID-912102",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-51775",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51775.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650751",
            "CSAFPID-1673395",
            "CSAFPID-1673396",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-90016",
            "CSAFPID-93781",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-224795",
            "CSAFPID-342804",
            "CSAFPID-611387",
            "CSAFPID-611413",
            "CSAFPID-614517",
            "CSAFPID-764237",
            "CSAFPID-764240",
            "CSAFPID-764242",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-764826",
            "CSAFPID-765242",
            "CSAFPID-816348",
            "CSAFPID-816773",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-912068",
            "CSAFPID-912073",
            "CSAFPID-912076",
            "CSAFPID-912077",
            "CSAFPID-912078",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912085",
            "CSAFPID-912101",
            "CSAFPID-912102",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2023-51775"
    },
    {
      "cve": "CVE-2023-52428",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-611387",
          "CSAFPID-912539",
          "CSAFPID-816773",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912077",
          "CSAFPID-816348",
          "CSAFPID-90016",
          "CSAFPID-93781",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-224795",
          "CSAFPID-342804",
          "CSAFPID-611413",
          "CSAFPID-614517",
          "CSAFPID-764240",
          "CSAFPID-764242",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-764826",
          "CSAFPID-765242",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-912073",
          "CSAFPID-912078",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912102",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-52428",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52428.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-611387",
            "CSAFPID-912539",
            "CSAFPID-816773",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912077",
            "CSAFPID-816348",
            "CSAFPID-90016",
            "CSAFPID-93781",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-224795",
            "CSAFPID-342804",
            "CSAFPID-611413",
            "CSAFPID-614517",
            "CSAFPID-764240",
            "CSAFPID-764242",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-764826",
            "CSAFPID-765242",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-912073",
            "CSAFPID-912078",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912102",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2023-52428"
    },
    {
      "cve": "CVE-2024-0450",
      "cwe": {
        "id": "CWE-450",
        "name": "Multiple Interpretations of UI Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Multiple Interpretations of UI Input",
          "title": "CWE-450"
        },
        {
          "category": "other",
          "text": "Asymmetric Resource Consumption (Amplification)",
          "title": "CWE-405"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-0450",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0450.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-0450"
    },
    {
      "cve": "CVE-2024-2398",
      "cwe": {
        "id": "CWE-772",
        "name": "Missing Release of Resource after Effective Lifetime"
      },
      "notes": [
        {
          "category": "other",
          "text": "Missing Release of Resource after Effective Lifetime",
          "title": "CWE-772"
        },
        {
          "category": "other",
          "text": "Missing Release of Memory after Effective Lifetime",
          "title": "CWE-401"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1673399",
          "CSAFPID-1673391",
          "CSAFPID-1673394",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-2398",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2398.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1673399",
            "CSAFPID-1673391",
            "CSAFPID-1673394",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-2398"
    },
    {
      "cve": "CVE-2024-4577",
      "cwe": {
        "id": "CWE-88",
        "name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
          "title": "CWE-88"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1650731",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-4577",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4577.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1650731",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-4577"
    },
    {
      "cve": "CVE-2024-4603",
      "cwe": {
        "id": "CWE-606",
        "name": "Unchecked Input for Loop Condition"
      },
      "notes": [
        {
          "category": "other",
          "text": "Unchecked Input for Loop Condition",
          "title": "CWE-606"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673391",
          "CSAFPID-1673394",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-4603",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4603.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673391",
            "CSAFPID-1673394",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-4603"
    },
    {
      "cve": "CVE-2024-5585",
      "cwe": {
        "id": "CWE-116",
        "name": "Improper Encoding or Escaping of Output"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Encoding or Escaping of Output",
          "title": "CWE-116"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
          "title": "CWE-88"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1650731",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-5585",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5585.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1650731",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628"
          ]
        }
      ],
      "title": "CVE-2024-5585"
    },
    {
      "cve": "CVE-2024-5971",
      "cwe": {
        "id": "CWE-674",
        "name": "Uncontrolled Recursion"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1673399",
          "CSAFPID-1673526",
          "CSAFPID-1673413",
          "CSAFPID-1673396",
          "CSAFPID-1673415",
          "CSAFPID-1673501",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-5971",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5971.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1673399",
            "CSAFPID-1673526",
            "CSAFPID-1673413",
            "CSAFPID-1673396",
            "CSAFPID-1673415",
            "CSAFPID-1673501",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-5971"
    },
    {
      "cve": "CVE-2024-6162",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650752",
          "CSAFPID-1650751",
          "CSAFPID-1673526",
          "CSAFPID-1673399",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-6162",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6162.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650752",
            "CSAFPID-1650751",
            "CSAFPID-1673526",
            "CSAFPID-1673399",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-6162"
    },
    {
      "cve": "CVE-2024-6387",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Signal Handler Race Condition",
          "title": "CWE-364"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1503595",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-6387",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6387.json"
        }
      ],
      "title": "CVE-2024-6387"
    },
    {
      "cve": "CVE-2024-7254",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912549",
          "CSAFPID-1672767",
          "CSAFPID-1503585",
          "CSAFPID-1673391",
          "CSAFPID-1673394",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-7254",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7254.json"
        }
      ],
      "title": "CVE-2024-7254"
    },
    {
      "cve": "CVE-2024-7264",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673530",
          "CSAFPID-1673382",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-7264",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7264.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673530",
            "CSAFPID-1673382",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628"
          ]
        }
      ],
      "title": "CVE-2024-7264"
    },
    {
      "cve": "CVE-2024-22020",
      "product_status": {
        "known_affected": [
          "CSAFPID-912101",
          "CSAFPID-1673473",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22020",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22020.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912101",
            "CSAFPID-1673473",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-22020"
    },
    {
      "cve": "CVE-2024-22201",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673475",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-912068",
          "CSAFPID-912073",
          "CSAFPID-912076",
          "CSAFPID-912077",
          "CSAFPID-912078",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912085",
          "CSAFPID-912101",
          "CSAFPID-912102",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-90016",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-219776",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-224795",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-342804",
          "CSAFPID-611387",
          "CSAFPID-611413",
          "CSAFPID-614517",
          "CSAFPID-764237",
          "CSAFPID-764240",
          "CSAFPID-764242",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-764826",
          "CSAFPID-765242",
          "CSAFPID-816348",
          "CSAFPID-816773",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22201",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22201.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673475",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-912068",
            "CSAFPID-912073",
            "CSAFPID-912076",
            "CSAFPID-912077",
            "CSAFPID-912078",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912085",
            "CSAFPID-912101",
            "CSAFPID-912102",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-90016",
            "CSAFPID-93781",
            "CSAFPID-220132",
            "CSAFPID-219776",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-224795",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-342804",
            "CSAFPID-611387",
            "CSAFPID-611413",
            "CSAFPID-614517",
            "CSAFPID-764237",
            "CSAFPID-764240",
            "CSAFPID-764242",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-764826",
            "CSAFPID-765242",
            "CSAFPID-816348",
            "CSAFPID-816773",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22257",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-764237",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-611387",
          "CSAFPID-816773",
          "CSAFPID-912077",
          "CSAFPID-816348",
          "CSAFPID-764240",
          "CSAFPID-614517",
          "CSAFPID-224795",
          "CSAFPID-764826",
          "CSAFPID-90016",
          "CSAFPID-912078",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-342804",
          "CSAFPID-912080",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-219776",
          "CSAFPID-765242",
          "CSAFPID-764739",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-912073",
          "CSAFPID-912085",
          "CSAFPID-912101",
          "CSAFPID-912102",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22257",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22257.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-764237",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-611387",
            "CSAFPID-816773",
            "CSAFPID-912077",
            "CSAFPID-816348",
            "CSAFPID-764240",
            "CSAFPID-614517",
            "CSAFPID-224795",
            "CSAFPID-764826",
            "CSAFPID-90016",
            "CSAFPID-912078",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-93781",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-342804",
            "CSAFPID-912080",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-219776",
            "CSAFPID-765242",
            "CSAFPID-764739",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-912073",
            "CSAFPID-912085",
            "CSAFPID-912101",
            "CSAFPID-912102",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-22257"
    },
    {
      "cve": "CVE-2024-22262",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650752",
          "CSAFPID-1650820",
          "CSAFPID-1650751",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22262",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650752",
            "CSAFPID-1650820",
            "CSAFPID-1650751",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-23672",
      "cwe": {
        "id": "CWE-459",
        "name": "Incomplete Cleanup"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Cleanup",
          "title": "CWE-459"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650826",
          "CSAFPID-1650731",
          "CSAFPID-1673382",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-611387",
          "CSAFPID-912539",
          "CSAFPID-816773",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912077",
          "CSAFPID-816348",
          "CSAFPID-912545",
          "CSAFPID-764240",
          "CSAFPID-912546",
          "CSAFPID-614517",
          "CSAFPID-912547",
          "CSAFPID-224795",
          "CSAFPID-912548",
          "CSAFPID-912102",
          "CSAFPID-912549",
          "CSAFPID-764826",
          "CSAFPID-90016",
          "CSAFPID-912078",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-912553",
          "CSAFPID-93781",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-342804",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-765242",
          "CSAFPID-912073",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23672",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23672.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650826",
            "CSAFPID-1650731",
            "CSAFPID-1673382",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-611387",
            "CSAFPID-912539",
            "CSAFPID-816773",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912077",
            "CSAFPID-816348",
            "CSAFPID-912545",
            "CSAFPID-764240",
            "CSAFPID-912546",
            "CSAFPID-614517",
            "CSAFPID-912547",
            "CSAFPID-224795",
            "CSAFPID-912548",
            "CSAFPID-912102",
            "CSAFPID-912549",
            "CSAFPID-764826",
            "CSAFPID-90016",
            "CSAFPID-912078",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-912553",
            "CSAFPID-93781",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-342804",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-765242",
            "CSAFPID-912073",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-23807",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650734",
          "CSAFPID-1650830",
          "CSAFPID-1650777",
          "CSAFPID-204622",
          "CSAFPID-219909",
          "CSAFPID-1650778",
          "CSAFPID-41182",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23807",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23807.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650734",
            "CSAFPID-1650830",
            "CSAFPID-1650777",
            "CSAFPID-204622",
            "CSAFPID-219909",
            "CSAFPID-1650778",
            "CSAFPID-41182",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-23807"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650826",
          "CSAFPID-1673382",
          "CSAFPID-1650731",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-611387",
          "CSAFPID-816773",
          "CSAFPID-912077",
          "CSAFPID-816348",
          "CSAFPID-764240",
          "CSAFPID-614517",
          "CSAFPID-224795",
          "CSAFPID-764826",
          "CSAFPID-90016",
          "CSAFPID-912078",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-93781",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-342804",
          "CSAFPID-912080",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-219776",
          "CSAFPID-765242",
          "CSAFPID-764739",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219826",
          "CSAFPID-912073",
          "CSAFPID-912101",
          "CSAFPID-912102",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650826",
            "CSAFPID-1673382",
            "CSAFPID-1650731",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-611387",
            "CSAFPID-816773",
            "CSAFPID-912077",
            "CSAFPID-816348",
            "CSAFPID-764240",
            "CSAFPID-614517",
            "CSAFPID-224795",
            "CSAFPID-764826",
            "CSAFPID-90016",
            "CSAFPID-912078",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-93781",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-342804",
            "CSAFPID-912080",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-219776",
            "CSAFPID-765242",
            "CSAFPID-764739",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219826",
            "CSAFPID-912073",
            "CSAFPID-912101",
            "CSAFPID-912102",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-25062",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650751",
          "CSAFPID-1650752",
          "CSAFPID-1673481",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-912068",
          "CSAFPID-912076",
          "CSAFPID-611387",
          "CSAFPID-912539",
          "CSAFPID-816773",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912101",
          "CSAFPID-912544",
          "CSAFPID-912077",
          "CSAFPID-816348",
          "CSAFPID-912545",
          "CSAFPID-764240",
          "CSAFPID-912546",
          "CSAFPID-614517",
          "CSAFPID-912547",
          "CSAFPID-224795",
          "CSAFPID-912548",
          "CSAFPID-912102",
          "CSAFPID-912549",
          "CSAFPID-764826",
          "CSAFPID-90016",
          "CSAFPID-912078",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-611413",
          "CSAFPID-764242",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-912553",
          "CSAFPID-93781",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-342804",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-765242",
          "CSAFPID-912073",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-25062",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25062.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650751",
            "CSAFPID-1650752",
            "CSAFPID-1673481",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-912068",
            "CSAFPID-912076",
            "CSAFPID-611387",
            "CSAFPID-912539",
            "CSAFPID-816773",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912101",
            "CSAFPID-912544",
            "CSAFPID-912077",
            "CSAFPID-816348",
            "CSAFPID-912545",
            "CSAFPID-764240",
            "CSAFPID-912546",
            "CSAFPID-614517",
            "CSAFPID-912547",
            "CSAFPID-224795",
            "CSAFPID-912548",
            "CSAFPID-912102",
            "CSAFPID-912549",
            "CSAFPID-764826",
            "CSAFPID-90016",
            "CSAFPID-912078",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-611413",
            "CSAFPID-764242",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-912553",
            "CSAFPID-93781",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-342804",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-765242",
            "CSAFPID-912073",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-25638",
      "cwe": {
        "id": "CWE-345",
        "name": "Insufficient Verification of Data Authenticity"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insufficient Verification of Data Authenticity",
          "title": "CWE-345"
        },
        {
          "category": "other",
          "text": "Acceptance of Extraneous Untrusted Data With Trusted Data",
          "title": "CWE-349"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912549",
          "CSAFPID-1672767",
          "CSAFPID-1503585",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-25638",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25638.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.9,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912549",
            "CSAFPID-1672767",
            "CSAFPID-1503585",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-25638"
    },
    {
      "cve": "CVE-2024-26308",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-1670429",
          "CSAFPID-1670430",
          "CSAFPID-1670431",
          "CSAFPID-1670432",
          "CSAFPID-1670433",
          "CSAFPID-1670434",
          "CSAFPID-1670435",
          "CSAFPID-1670436",
          "CSAFPID-1670437",
          "CSAFPID-1670438",
          "CSAFPID-1670439",
          "CSAFPID-1670440",
          "CSAFPID-1670441",
          "CSAFPID-1670442",
          "CSAFPID-90016",
          "CSAFPID-93781",
          "CSAFPID-204510",
          "CSAFPID-204569",
          "CSAFPID-219776",
          "CSAFPID-219826",
          "CSAFPID-220132",
          "CSAFPID-224795",
          "CSAFPID-342804",
          "CSAFPID-611387",
          "CSAFPID-611413",
          "CSAFPID-614517",
          "CSAFPID-764237",
          "CSAFPID-764240",
          "CSAFPID-764242",
          "CSAFPID-764247",
          "CSAFPID-764735",
          "CSAFPID-764739",
          "CSAFPID-764826",
          "CSAFPID-765242",
          "CSAFPID-816348",
          "CSAFPID-816773",
          "CSAFPID-816781",
          "CSAFPID-816782",
          "CSAFPID-912068",
          "CSAFPID-912073",
          "CSAFPID-912076",
          "CSAFPID-912077",
          "CSAFPID-912078",
          "CSAFPID-912079",
          "CSAFPID-912080",
          "CSAFPID-912085",
          "CSAFPID-912101",
          "CSAFPID-912102",
          "CSAFPID-912539",
          "CSAFPID-912540",
          "CSAFPID-912541",
          "CSAFPID-912542",
          "CSAFPID-912543",
          "CSAFPID-912544",
          "CSAFPID-912545",
          "CSAFPID-912546",
          "CSAFPID-912547",
          "CSAFPID-912548",
          "CSAFPID-912549",
          "CSAFPID-912550",
          "CSAFPID-912551",
          "CSAFPID-912552",
          "CSAFPID-912553",
          "CSAFPID-912554",
          "CSAFPID-912556",
          "CSAFPID-912557",
          "CSAFPID-912558",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-1503582",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-26308",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-26308.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-1670429",
            "CSAFPID-1670430",
            "CSAFPID-1670431",
            "CSAFPID-1670432",
            "CSAFPID-1670433",
            "CSAFPID-1670434",
            "CSAFPID-1670435",
            "CSAFPID-1670436",
            "CSAFPID-1670437",
            "CSAFPID-1670438",
            "CSAFPID-1670439",
            "CSAFPID-1670440",
            "CSAFPID-1670441",
            "CSAFPID-1670442",
            "CSAFPID-90016",
            "CSAFPID-93781",
            "CSAFPID-204510",
            "CSAFPID-204569",
            "CSAFPID-219776",
            "CSAFPID-219826",
            "CSAFPID-220132",
            "CSAFPID-224795",
            "CSAFPID-342804",
            "CSAFPID-611387",
            "CSAFPID-611413",
            "CSAFPID-614517",
            "CSAFPID-764237",
            "CSAFPID-764240",
            "CSAFPID-764242",
            "CSAFPID-764247",
            "CSAFPID-764735",
            "CSAFPID-764739",
            "CSAFPID-764826",
            "CSAFPID-765242",
            "CSAFPID-816348",
            "CSAFPID-816773",
            "CSAFPID-816781",
            "CSAFPID-816782",
            "CSAFPID-912068",
            "CSAFPID-912073",
            "CSAFPID-912076",
            "CSAFPID-912077",
            "CSAFPID-912078",
            "CSAFPID-912079",
            "CSAFPID-912080",
            "CSAFPID-912085",
            "CSAFPID-912101",
            "CSAFPID-912102",
            "CSAFPID-912539",
            "CSAFPID-912540",
            "CSAFPID-912541",
            "CSAFPID-912542",
            "CSAFPID-912543",
            "CSAFPID-912544",
            "CSAFPID-912545",
            "CSAFPID-912546",
            "CSAFPID-912547",
            "CSAFPID-912548",
            "CSAFPID-912549",
            "CSAFPID-912550",
            "CSAFPID-912551",
            "CSAFPID-912552",
            "CSAFPID-912553",
            "CSAFPID-912554",
            "CSAFPID-912556",
            "CSAFPID-912557",
            "CSAFPID-912558",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-1503582",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600"
          ]
        }
      ],
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-28182",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Detection of Error Condition Without Action",
          "title": "CWE-390"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673414",
          "CSAFPID-1673396",
          "CSAFPID-1673485",
          "CSAFPID-1673393",
          "CSAFPID-1673394",
          "CSAFPID-1673389",
          "CSAFPID-1672767",
          "CSAFPID-1673391",
          "CSAFPID-1673392",
          "CSAFPID-1673415",
          "CSAFPID-1673390",
          "CSAFPID-1673413",
          "CSAFPID-1673395",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-28182",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28182.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673414",
            "CSAFPID-1673396",
            "CSAFPID-1673485",
            "CSAFPID-1673393",
            "CSAFPID-1673394",
            "CSAFPID-1673389",
            "CSAFPID-1672767",
            "CSAFPID-1673391",
            "CSAFPID-1673392",
            "CSAFPID-1673415",
            "CSAFPID-1673390",
            "CSAFPID-1673413",
            "CSAFPID-1673395",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-28182"
    },
    {
      "cve": "CVE-2024-28849",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1673414",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-28849",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28849.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1673414",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-28849"
    },
    {
      "cve": "CVE-2024-29025",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1635310",
          "CSAFPID-1635311",
          "CSAFPID-1635312",
          "CSAFPID-1635313",
          "CSAFPID-1635314",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635317",
          "CSAFPID-1635318",
          "CSAFPID-1635319",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1635322",
          "CSAFPID-1635323",
          "CSAFPID-1635324",
          "CSAFPID-1635325",
          "CSAFPID-1635326",
          "CSAFPID-1635327",
          "CSAFPID-1635328",
          "CSAFPID-1635329",
          "CSAFPID-1650752",
          "CSAFPID-1650751",
          "CSAFPID-1673494",
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1674636",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29025",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29025.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1635310",
            "CSAFPID-1635311",
            "CSAFPID-1635312",
            "CSAFPID-1635313",
            "CSAFPID-1635314",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635317",
            "CSAFPID-1635318",
            "CSAFPID-1635319",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1635322",
            "CSAFPID-1635323",
            "CSAFPID-1635324",
            "CSAFPID-1635325",
            "CSAFPID-1635326",
            "CSAFPID-1635327",
            "CSAFPID-1635328",
            "CSAFPID-1635329",
            "CSAFPID-1650752",
            "CSAFPID-1650751",
            "CSAFPID-1673494",
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1674636",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-29133",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1650820",
          "CSAFPID-224790",
          "CSAFPID-221118",
          "CSAFPID-1673496",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29133",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29133.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1650820",
            "CSAFPID-224790",
            "CSAFPID-221118",
            "CSAFPID-1673496",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-29133"
    },
    {
      "cve": "CVE-2024-29736",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Server-Side Request Forgery (SSRF)",
          "title": "CWE-918"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673399",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29736",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29736.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673399",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-29736"
    },
    {
      "cve": "CVE-2024-29857",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673413",
          "CSAFPID-1673415",
          "CSAFPID-1673501",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646",
          "CSAFPID-220055",
          "CSAFPID-1503577",
          "CSAFPID-764237",
          "CSAFPID-912085",
          "CSAFPID-1503578",
          "CSAFPID-1503579",
          "CSAFPID-1503580",
          "CSAFPID-912101",
          "CSAFPID-1503581",
          "CSAFPID-1503322",
          "CSAFPID-912069",
          "CSAFPID-764240",
          "CSAFPID-912547",
          "CSAFPID-1503582",
          "CSAFPID-912549",
          "CSAFPID-1503583",
          "CSAFPID-1503584",
          "CSAFPID-1503585",
          "CSAFPID-1503586",
          "CSAFPID-1503587",
          "CSAFPID-1503588",
          "CSAFPID-1503316",
          "CSAFPID-1503317",
          "CSAFPID-764242",
          "CSAFPID-1503589",
          "CSAFPID-1503590",
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1503591",
          "CSAFPID-816789",
          "CSAFPID-816790",
          "CSAFPID-1503592",
          "CSAFPID-1503593",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-342804",
          "CSAFPID-1503596",
          "CSAFPID-1503597",
          "CSAFPID-1503598",
          "CSAFPID-816792",
          "CSAFPID-764247",
          "CSAFPID-912556",
          "CSAFPID-764735",
          "CSAFPID-816793",
          "CSAFPID-1503599",
          "CSAFPID-1503600",
          "CSAFPID-342793",
          "CSAFPID-816350",
          "CSAFPID-1261",
          "CSAFPID-342803",
          "CSAFPID-816354",
          "CSAFPID-204563",
          "CSAFPID-764738",
          "CSAFPID-816355",
          "CSAFPID-1503601",
          "CSAFPID-1503602",
          "CSAFPID-240600",
          "CSAFPID-204510",
          "CSAFPID-204569"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29857",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29857.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673413",
            "CSAFPID-1673415",
            "CSAFPID-1673501",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646",
            "CSAFPID-220055",
            "CSAFPID-1503577",
            "CSAFPID-764237",
            "CSAFPID-912085",
            "CSAFPID-1503578",
            "CSAFPID-1503579",
            "CSAFPID-1503580",
            "CSAFPID-912101",
            "CSAFPID-1503581",
            "CSAFPID-1503322",
            "CSAFPID-912069",
            "CSAFPID-764240",
            "CSAFPID-912547",
            "CSAFPID-1503582",
            "CSAFPID-912549",
            "CSAFPID-1503583",
            "CSAFPID-1503584",
            "CSAFPID-1503585",
            "CSAFPID-1503586",
            "CSAFPID-1503587",
            "CSAFPID-1503588",
            "CSAFPID-1503316",
            "CSAFPID-1503317",
            "CSAFPID-764242",
            "CSAFPID-1503589",
            "CSAFPID-1503590",
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1503591",
            "CSAFPID-816789",
            "CSAFPID-816790",
            "CSAFPID-1503592",
            "CSAFPID-1503593",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-342804",
            "CSAFPID-1503596",
            "CSAFPID-1503597",
            "CSAFPID-1503598",
            "CSAFPID-816792",
            "CSAFPID-764247",
            "CSAFPID-912556",
            "CSAFPID-764735",
            "CSAFPID-816793",
            "CSAFPID-1503599",
            "CSAFPID-1503600",
            "CSAFPID-342793",
            "CSAFPID-816350",
            "CSAFPID-1261",
            "CSAFPID-342803",
            "CSAFPID-816354",
            "CSAFPID-204563",
            "CSAFPID-764738",
            "CSAFPID-816355",
            "CSAFPID-1503601",
            "CSAFPID-1503602",
            "CSAFPID-240600",
            "CSAFPID-204510",
            "CSAFPID-204569"
          ]
        }
      ],
      "title": "CVE-2024-29857"
    },
    {
      "cve": "CVE-2024-30251",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
          "title": "CWE-835"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912079",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-30251",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-30251.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912079",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-30251"
    },
    {
      "cve": "CVE-2024-31080",
      "cwe": {
        "id": "CWE-126",
        "name": "Buffer Over-read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Over-read",
          "title": "CWE-126"
        },
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-31080",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31080.json"
        }
      ],
      "title": "CVE-2024-31080"
    },
    {
      "cve": "CVE-2024-31744",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673392",
          "CSAFPID-1673393",
          "CSAFPID-1673396",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-31744",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31744.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673392",
            "CSAFPID-1673393",
            "CSAFPID-1673396",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-31744"
    },
    {
      "cve": "CVE-2024-32760",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-220132",
          "CSAFPID-912079",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-32760",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-32760.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-220132",
            "CSAFPID-912079",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-32760"
    },
    {
      "cve": "CVE-2024-33602",
      "cwe": {
        "id": "CWE-466",
        "name": "Return of Pointer Value Outside of Expected Range"
      },
      "notes": [
        {
          "category": "other",
          "text": "Return of Pointer Value Outside of Expected Range",
          "title": "CWE-466"
        },
        {
          "category": "other",
          "text": "Improper Check or Handling of Exceptional Conditions",
          "title": "CWE-703"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912549",
          "CSAFPID-1673396",
          "CSAFPID-1503594",
          "CSAFPID-1503595",
          "CSAFPID-1672762",
          "CSAFPID-1673395",
          "CSAFPID-1672764",
          "CSAFPID-1672767",
          "CSAFPID-1503585",
          "CSAFPID-1673494",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-33602",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33602.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912549",
            "CSAFPID-1673396",
            "CSAFPID-1503594",
            "CSAFPID-1503595",
            "CSAFPID-1672762",
            "CSAFPID-1673395",
            "CSAFPID-1672764",
            "CSAFPID-1672767",
            "CSAFPID-1503585",
            "CSAFPID-1673494",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-33602"
    },
    {
      "cve": "CVE-2024-34750",
      "cwe": {
        "id": "CWE-755",
        "name": "Improper Handling of Exceptional Conditions"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Handling of Exceptional Conditions",
          "title": "CWE-755"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673481",
          "CSAFPID-1503596",
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-34750",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34750.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673481",
            "CSAFPID-1503596",
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-34750"
    },
    {
      "cve": "CVE-2024-37371",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Handling of Length Parameter Inconsistency",
          "title": "CWE-130"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912549",
          "CSAFPID-1673413",
          "CSAFPID-1673414",
          "CSAFPID-1673396",
          "CSAFPID-1503590",
          "CSAFPID-1673393",
          "CSAFPID-1673395",
          "CSAFPID-1673399",
          "CSAFPID-1672767",
          "CSAFPID-1503585",
          "CSAFPID-1673392",
          "CSAFPID-1503589",
          "CSAFPID-1673415",
          "CSAFPID-1673389",
          "CSAFPID-1673390",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-37371",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37371.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912549",
            "CSAFPID-1673413",
            "CSAFPID-1673414",
            "CSAFPID-1673396",
            "CSAFPID-1503590",
            "CSAFPID-1673393",
            "CSAFPID-1673395",
            "CSAFPID-1673399",
            "CSAFPID-1672767",
            "CSAFPID-1503585",
            "CSAFPID-1673392",
            "CSAFPID-1503589",
            "CSAFPID-1673415",
            "CSAFPID-1673389",
            "CSAFPID-1673390",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-37371"
    },
    {
      "cve": "CVE-2024-37891",
      "cwe": {
        "id": "CWE-669",
        "name": "Incorrect Resource Transfer Between Spheres"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incorrect Resource Transfer Between Spheres",
          "title": "CWE-669"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673396",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-37891",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673396",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-37891"
    },
    {
      "cve": "CVE-2024-38816",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673420",
          "CSAFPID-1673421",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38816",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38816.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673420",
            "CSAFPID-1673421",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-38816"
    },
    {
      "cve": "CVE-2024-39689",
      "cwe": {
        "id": "CWE-345",
        "name": "Insufficient Verification of Data Authenticity"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insufficient Verification of Data Authenticity",
          "title": "CWE-345"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673396",
          "CSAFPID-1673392",
          "CSAFPID-1673393"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-39689",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39689.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673396",
            "CSAFPID-1673392",
            "CSAFPID-1673393"
          ]
        }
      ],
      "title": "CVE-2024-39689"
    },
    {
      "cve": "CVE-2024-40898",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Server-Side Request Forgery (SSRF)",
          "title": "CWE-918"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673516",
          "CSAFPID-1673411",
          "CSAFPID-1673412",
          "CSAFPID-1650731",
          "CSAFPID-1673382",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-40898",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-40898.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673516",
            "CSAFPID-1673411",
            "CSAFPID-1673412",
            "CSAFPID-1650731",
            "CSAFPID-1673382",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-40898"
    },
    {
      "cve": "CVE-2024-41817",
      "cwe": {
        "id": "CWE-427",
        "name": "Uncontrolled Search Path Element"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Search Path Element",
          "title": "CWE-427"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673382",
          "CSAFPID-1650731",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-1674625"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-41817",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41817.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673382",
            "CSAFPID-1650731",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-1674625"
          ]
        }
      ],
      "title": "CVE-2024-41817"
    },
    {
      "cve": "CVE-2024-43044",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        },
        {
          "category": "other",
          "text": "Improper Check for Unusual or Exceptional Conditions",
          "title": "CWE-754"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673395",
          "CSAFPID-1673411",
          "CSAFPID-1673412",
          "CSAFPID-1673413",
          "CSAFPID-1673396",
          "CSAFPID-1673392",
          "CSAFPID-1673494",
          "CSAFPID-1673393",
          "CSAFPID-1673415",
          "CSAFPID-1673416",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-43044",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-43044.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673395",
            "CSAFPID-1673411",
            "CSAFPID-1673412",
            "CSAFPID-1673413",
            "CSAFPID-1673396",
            "CSAFPID-1673392",
            "CSAFPID-1673494",
            "CSAFPID-1673393",
            "CSAFPID-1673415",
            "CSAFPID-1673416",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-43044"
    },
    {
      "cve": "CVE-2024-45492",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673382",
          "CSAFPID-1673399",
          "CSAFPID-1650731",
          "CSAFPID-1673517",
          "CSAFPID-1673396",
          "CSAFPID-1674617",
          "CSAFPID-1674618",
          "CSAFPID-1674619",
          "CSAFPID-1674620",
          "CSAFPID-1674621",
          "CSAFPID-1674622",
          "CSAFPID-1674623",
          "CSAFPID-1674624",
          "CSAFPID-1674625",
          "CSAFPID-1674626",
          "CSAFPID-1674627",
          "CSAFPID-1674628",
          "CSAFPID-1635305",
          "CSAFPID-1635306",
          "CSAFPID-1635307",
          "CSAFPID-1635308",
          "CSAFPID-1635309",
          "CSAFPID-1670434",
          "CSAFPID-1674629",
          "CSAFPID-1635315",
          "CSAFPID-1635316",
          "CSAFPID-1635318",
          "CSAFPID-1674630",
          "CSAFPID-1674631",
          "CSAFPID-1674632",
          "CSAFPID-1674633",
          "CSAFPID-1674634",
          "CSAFPID-1674635",
          "CSAFPID-1635323",
          "CSAFPID-1674636",
          "CSAFPID-1635324",
          "CSAFPID-1674637",
          "CSAFPID-1674638",
          "CSAFPID-1674639",
          "CSAFPID-1674640",
          "CSAFPID-1674641",
          "CSAFPID-1674642",
          "CSAFPID-1635320",
          "CSAFPID-1635321",
          "CSAFPID-1674643",
          "CSAFPID-1674644",
          "CSAFPID-1674645",
          "CSAFPID-1674646"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-45492",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673382",
            "CSAFPID-1673399",
            "CSAFPID-1650731",
            "CSAFPID-1673517",
            "CSAFPID-1673396",
            "CSAFPID-1674617",
            "CSAFPID-1674618",
            "CSAFPID-1674619",
            "CSAFPID-1674620",
            "CSAFPID-1674621",
            "CSAFPID-1674622",
            "CSAFPID-1674623",
            "CSAFPID-1674624",
            "CSAFPID-1674625",
            "CSAFPID-1674626",
            "CSAFPID-1674627",
            "CSAFPID-1674628",
            "CSAFPID-1635305",
            "CSAFPID-1635306",
            "CSAFPID-1635307",
            "CSAFPID-1635308",
            "CSAFPID-1635309",
            "CSAFPID-1670434",
            "CSAFPID-1674629",
            "CSAFPID-1635315",
            "CSAFPID-1635316",
            "CSAFPID-1635318",
            "CSAFPID-1674630",
            "CSAFPID-1674631",
            "CSAFPID-1674632",
            "CSAFPID-1674633",
            "CSAFPID-1674634",
            "CSAFPID-1674635",
            "CSAFPID-1635323",
            "CSAFPID-1674636",
            "CSAFPID-1635324",
            "CSAFPID-1674637",
            "CSAFPID-1674638",
            "CSAFPID-1674639",
            "CSAFPID-1674640",
            "CSAFPID-1674641",
            "CSAFPID-1674642",
            "CSAFPID-1635320",
            "CSAFPID-1635321",
            "CSAFPID-1674643",
            "CSAFPID-1674644",
            "CSAFPID-1674645",
            "CSAFPID-1674646"
          ]
        }
      ],
      "title": "CVE-2024-45492"
    }
  ]
}

NCSC-2024-0417

Vulnerability from csaf_ncscnl - Published: 2024-10-17 13:19 - Updated: 2024-10-17 13:19

Summary

Kwetsbaarheden verholpen in Oracle Fusion Middleware

Notes

Feiten: Oracle heeft kwetsbaarheden verholpen in Fusion Middleware componenten, zoals WebLogic Server, WebCenter en HTTP Server.

Interpretaties: Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade: - Denial-of-Service (DoS) - Manipuleren van data - Uitvoer van willekeurige code (Administratorrechten) - Toegang tot gevoelige gegevens Omdat deze kwetsbaarheden zich bevinden in diverse Middleware producten, is niet uit te sluiten dat applicaties, draaiende op platformen ondersteund door deze middleware ook kwetsbaar zijn, danwel gevoelig voor misbruik van deze kwetsbaarheden.

Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer infomatie.

Kans: medium

Schade: high

CWE-1325: Improperly Controlled Sequential Memory Allocation

CWE-390: Detection of Error Condition Without Action

CWE-59: Improper Link Resolution Before File Access ('Link Following')

CWE-178: Improper Handling of Case Sensitivity

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CWE-190: Integer Overflow or Wraparound

CWE-404: Improper Resource Shutdown or Release

CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-416: Use After Free

CWE-401: Missing Release of Memory after Effective Lifetime

CWE-94: Improper Control of Generation of Code ('Code Injection')

CWE-400: Uncontrolled Resource Consumption

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-502: Deserialization of Untrusted Data

CWE-918: Server-Side Request Forgery (SSRF)

CWE-787: Out-of-bounds Write

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CWE-20: Improper Input Validation

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2020-11023

6.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 25 products

Product	Identifier	Version
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:10.3.6.0:::::::*`	—
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:9.1.0.0.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.3.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.3.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:::::::*`	—
webcenter_sites_support_tools oracle	`cpe:2.3:a:oracle:webcenter_sites_support_tools::::::::`	—

CVE-2020-17521

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 38 products

Product	Identifier	Version
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:9.1.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___14.1.1.0.0:::::::*`	—
business_activity_monitoring__bam_ oracle	`cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.3.0:::::::*`	—
business_activity_monitoring__bam_ oracle	`cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.4.0:::::::*`	—
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.3.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.3.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.3.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:9.1.0.0.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:::::::*`	—
webcenter_sites_support_tools oracle	`cpe:2.3:a:oracle:webcenter_sites_support_tools::::::::`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:11.1.1.5.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector::::::::`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.5:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:all_supported_s:::::::*`	—

CVE-2022-1471

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 26 products

Product	Identifier	Version
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:9.1.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_console___14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:_third_party___14.1.1.0.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_enterprise_capture oracle	`cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:::::::*`	—

CVE-2023-4759

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-59 - Improper Link Resolution Before File Access ('Link Following')

Affected products

Known affected 10 products

Product	Identifier	Version
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2023-35116

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Known affected 20 products

Product	Identifier	Version
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
webcenter_enterprise_capture oracle	`cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—

CVE-2023-39743

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—

CVE-2023-51775

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 18 products

Product	Identifier	Version
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
webcenter_enterprise_capture oracle	`cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—

CVE-2024-2511

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 10 products

Product	Identifier	Version
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-6345

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-21190

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
global_lifecycle_management_fmw_installer oracle	`cpe:2.3:a:oracle:global_lifecycle_management_fmw_installer:12.2.1.4.0:::::::*`	—

CVE-2024-21191

7.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
enterprise_manager_fusion_middleware_control oracle	`cpe:2.3:a:oracle:enterprise_manager_fusion_middleware_control:12.2.1.4.0:::::::*`	—

CVE-2024-21192

CVE-2024-21205

CVE-2024-21215

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-21216

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—

CVE-2024-21234

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-21246

CVE-2024-21260

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-21274

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—

CVE-2024-22201

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 18 products

Product	Identifier	Version
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
webcenter_enterprise_capture oracle	`cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—

CVE-2024-22262

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 11 products

Product	Identifier	Version
webcenter_forms_recognition oracle	`cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-23807

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Known affected 10 products

Product	Identifier	Version
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 18 products

Product	Identifier	Version
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.6:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
managed_file_transfer oracle	`cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:::::::*`	—
identity_manager_connector oracle	`cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
webcenter_enterprise_capture oracle	`cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:::::::*`	—
weblogic_server_proxy_plug-in oracle	`cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—

CVE-2024-25269

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-401 - Missing Release of Memory after Effective Lifetime

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—

CVE-2024-28182

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 11 products

Product	Identifier	Version
http_server oracle	`cpe:2.3:a:oracle:http_server:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-28752

9.3 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 11 products

Product	Identifier	Version
webcenter_forms_recognition oracle	`cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-29131

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-787 - Out-of-bounds Write

Affected products

Known affected 10 products

Product	Identifier	Version
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—
data_integrator oracle	`cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:::::::*`	—
http_server oracle	`cpe:2.3:a:oracle:http_server:12.2.1.4.0:::::::*`	—
middleware_common_libraries_and_tools oracle	`cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:::::::*`	—
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—
webcenter_content oracle	`cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:::::::*`	—
webcenter_portal oracle	`cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:::::::*`	—
webcenter_sites oracle	`cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*`	—
weblogic_server oracle	`cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*`	—

CVE-2024-36052

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—

CVE-2024-38999

10.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
business_process_management_suite oracle	`cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:::::::*`	—
business_activity_monitoring oracle	`cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:::::::*`	—

CVE-2024-45492

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
outside_in_technology oracle	`cpe:2.3:a:oracle:outside_in_technology:8.5.7:::::::*`	—

References

31 references

URL	Category
https://www.oracle.com/security-alerts/cpuoct2024.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Oracle heeft kwetsbaarheden verholpen in Fusion Middleware componenten, zoals WebLogic Server, WebCenter en HTTP Server.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipuleren van data\n- Uitvoer van willekeurige code (Administratorrechten)\n- Toegang tot gevoelige gegevens\n\nOmdat deze kwetsbaarheden zich bevinden in diverse Middleware producten, is niet uit te sluiten dat applicaties, draaiende op platformen ondersteund door deze middleware ook kwetsbaar zijn, danwel gevoelig voor misbruik van deze kwetsbaarheden.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer infomatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improperly Controlled Sequential Memory Allocation",
        "title": "CWE-1325"
      },
      {
        "category": "general",
        "text": "Detection of Error Condition Without Action",
        "title": "CWE-390"
      },
      {
        "category": "general",
        "text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
        "title": "CWE-59"
      },
      {
        "category": "general",
        "text": "Improper Handling of Case Sensitivity",
        "title": "CWE-178"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
        "title": "CWE-1321"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "Missing Release of Memory after Effective Lifetime",
        "title": "CWE-401"
      },
      {
        "category": "general",
        "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
        "title": "CWE-94"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Server-Side Request Forgery (SSRF)",
        "title": "CWE-918"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; hkcert; nvd; oracle; redhat",
        "url": "https://www.oracle.com/security-alerts/cpuoct2024.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Oracle Fusion Middleware",
    "tracking": {
      "current_release_date": "2024-10-17T13:19:16.185510Z",
      "id": "NCSC-2024-0417",
      "initial_release_date": "2024-10-17T13:19:16.185510Z",
      "revision_history": [
        {
          "date": "2024-10-17T13:19:16.185510Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "outside_in_technology",
            "product": {
              "name": "outside_in_technology",
              "product_id": "CSAFPID-292093",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:outside_in_technology:8.5.5:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "outside_in_technology",
            "product": {
              "name": "outside_in_technology",
              "product_id": "CSAFPID-1260",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:outside_in_technology:8.5.6:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "outside_in_technology",
            "product": {
              "name": "outside_in_technology",
              "product_id": "CSAFPID-912053",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server_proxy_plug-in",
            "product": {
              "name": "weblogic_server_proxy_plug-in",
              "product_id": "CSAFPID-199883",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server_proxy_plug-in",
            "product": {
              "name": "weblogic_server_proxy_plug-in",
              "product_id": "CSAFPID-951239",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764797",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764799",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_console___12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764801",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_console___14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764798",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764800",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_third_party___12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-764802",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:_third_party___14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-113536",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:10.3.6.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-113521",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:12.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-3663",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-94310",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-3661",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-3660",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-1504444",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "weblogic_server",
            "product": {
              "name": "weblogic_server",
              "product_id": "CSAFPID-1973",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_content",
            "product": {
              "name": "webcenter_content",
              "product_id": "CSAFPID-389123",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_content:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_content",
            "product": {
              "name": "webcenter_content",
              "product_id": "CSAFPID-179795",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_content:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_enterprise_capture",
            "product": {
              "name": "webcenter_enterprise_capture",
              "product_id": "CSAFPID-912594",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_forms_recognition",
            "product": {
              "name": "webcenter_forms_recognition",
              "product_id": "CSAFPID-1673476",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_portal",
            "product": {
              "name": "webcenter_portal",
              "product_id": "CSAFPID-135359",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_portal",
            "product": {
              "name": "webcenter_portal",
              "product_id": "CSAFPID-45194",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_sites_support_tools",
            "product": {
              "name": "webcenter_sites_support_tools",
              "product_id": "CSAFPID-765268",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_sites_support_tools:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_sites",
            "product": {
              "name": "webcenter_sites",
              "product_id": "CSAFPID-9026",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_sites",
            "product": {
              "name": "webcenter_sites",
              "product_id": "CSAFPID-135354",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "webcenter_sites",
            "product": {
              "name": "webcenter_sites",
              "product_id": "CSAFPID-765390",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:webcenter_sites:all_supported_s:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "data_integrator",
            "product": {
              "name": "data_integrator",
              "product_id": "CSAFPID-204494",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "data_integrator",
            "product": {
              "name": "data_integrator",
              "product_id": "CSAFPID-204566",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "business_activity_monitoring__bam_",
            "product": {
              "name": "business_activity_monitoring__bam_",
              "product_id": "CSAFPID-764927",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "business_activity_monitoring__bam_",
            "product": {
              "name": "business_activity_monitoring__bam_",
              "product_id": "CSAFPID-764928",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "business_activity_monitoring",
            "product": {
              "name": "business_activity_monitoring",
              "product_id": "CSAFPID-228157",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "business_process_management_suite",
            "product": {
              "name": "business_process_management_suite",
              "product_id": "CSAFPID-9043",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "business_process_management_suite",
            "product": {
              "name": "business_process_management_suite",
              "product_id": "CSAFPID-9642",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "middleware_common_libraries_and_tools",
            "product": {
              "name": "middleware_common_libraries_and_tools",
              "product_id": "CSAFPID-94398",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "middleware_common_libraries_and_tools",
            "product": {
              "name": "middleware_common_libraries_and_tools",
              "product_id": "CSAFPID-94309",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "middleware_common_libraries_and_tools",
            "product": {
              "name": "middleware_common_libraries_and_tools",
              "product_id": "CSAFPID-94393",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "enterprise_manager_fusion_middleware_control",
            "product": {
              "name": "enterprise_manager_fusion_middleware_control",
              "product_id": "CSAFPID-1673426",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:enterprise_manager_fusion_middleware_control:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "global_lifecycle_management_fmw_installer",
            "product": {
              "name": "global_lifecycle_management_fmw_installer",
              "product_id": "CSAFPID-1673425",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:global_lifecycle_management_fmw_installer:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "http_server",
            "product": {
              "name": "http_server",
              "product_id": "CSAFPID-93909",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "http_server",
            "product": {
              "name": "http_server",
              "product_id": "CSAFPID-40303",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "http_server",
            "product": {
              "name": "http_server",
              "product_id": "CSAFPID-912074",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:http_server:14.1.1.0.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "managed_file_transfer",
            "product": {
              "name": "managed_file_transfer",
              "product_id": "CSAFPID-204452",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "managed_file_transfer",
            "product": {
              "name": "managed_file_transfer",
              "product_id": "CSAFPID-204581",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "identity_manager_connector",
            "product": {
              "name": "identity_manager_connector",
              "product_id": "CSAFPID-765382",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:identity_manager_connector:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "identity_manager_connector",
            "product": {
              "name": "identity_manager_connector",
              "product_id": "CSAFPID-227776",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:identity_manager_connector:11.1.1.5.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "identity_manager_connector",
            "product": {
              "name": "identity_manager_connector",
              "product_id": "CSAFPID-396523",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:identity_manager_connector:12.2.1.3.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "identity_manager_connector",
            "product": {
              "name": "identity_manager_connector",
              "product_id": "CSAFPID-204638",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:identity_manager_connector:9.1.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "identity_manager_connector",
            "product": {
              "name": "identity_manager_connector",
              "product_id": "CSAFPID-765267",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:oracle:identity_manager_connector:9.1.0.0.0:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-11023",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1973",
          "CSAFPID-3660",
          "CSAFPID-135354",
          "CSAFPID-9026",
          "CSAFPID-3663",
          "CSAFPID-3661",
          "CSAFPID-94310",
          "CSAFPID-113521",
          "CSAFPID-113536",
          "CSAFPID-9642",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-204581",
          "CSAFPID-94309",
          "CSAFPID-1260",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-204494",
          "CSAFPID-93909",
          "CSAFPID-765267",
          "CSAFPID-204452",
          "CSAFPID-94398",
          "CSAFPID-389123",
          "CSAFPID-135359",
          "CSAFPID-765268"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-11023",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-11023.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1973",
            "CSAFPID-3660",
            "CSAFPID-135354",
            "CSAFPID-9026",
            "CSAFPID-3663",
            "CSAFPID-3661",
            "CSAFPID-94310",
            "CSAFPID-113521",
            "CSAFPID-113536",
            "CSAFPID-9642",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-204581",
            "CSAFPID-94309",
            "CSAFPID-1260",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-204494",
            "CSAFPID-93909",
            "CSAFPID-765267",
            "CSAFPID-204452",
            "CSAFPID-94398",
            "CSAFPID-389123",
            "CSAFPID-135359",
            "CSAFPID-765268"
          ]
        }
      ],
      "title": "CVE-2020-11023"
    },
    {
      "cve": "CVE-2020-17521",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9642",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-396523",
          "CSAFPID-204638",
          "CSAFPID-94309",
          "CSAFPID-179795",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973",
          "CSAFPID-204581",
          "CSAFPID-1260",
          "CSAFPID-45194",
          "CSAFPID-764797",
          "CSAFPID-764798",
          "CSAFPID-3661",
          "CSAFPID-764799",
          "CSAFPID-764800",
          "CSAFPID-764801",
          "CSAFPID-764802",
          "CSAFPID-764927",
          "CSAFPID-764928",
          "CSAFPID-9043",
          "CSAFPID-93909",
          "CSAFPID-94398",
          "CSAFPID-389123",
          "CSAFPID-135359",
          "CSAFPID-9026",
          "CSAFPID-204494",
          "CSAFPID-765267",
          "CSAFPID-204452",
          "CSAFPID-765268",
          "CSAFPID-227776",
          "CSAFPID-94310",
          "CSAFPID-765382",
          "CSAFPID-292093",
          "CSAFPID-94393",
          "CSAFPID-765390"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-17521",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-17521.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9642",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-396523",
            "CSAFPID-204638",
            "CSAFPID-94309",
            "CSAFPID-179795",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973",
            "CSAFPID-204581",
            "CSAFPID-1260",
            "CSAFPID-45194",
            "CSAFPID-764797",
            "CSAFPID-764798",
            "CSAFPID-3661",
            "CSAFPID-764799",
            "CSAFPID-764800",
            "CSAFPID-764801",
            "CSAFPID-764802",
            "CSAFPID-764927",
            "CSAFPID-764928",
            "CSAFPID-9043",
            "CSAFPID-93909",
            "CSAFPID-94398",
            "CSAFPID-389123",
            "CSAFPID-135359",
            "CSAFPID-9026",
            "CSAFPID-204494",
            "CSAFPID-765267",
            "CSAFPID-204452",
            "CSAFPID-765268",
            "CSAFPID-227776",
            "CSAFPID-94310",
            "CSAFPID-765382",
            "CSAFPID-292093",
            "CSAFPID-94393",
            "CSAFPID-765390"
          ]
        }
      ],
      "title": "CVE-2020-17521"
    },
    {
      "cve": "CVE-2022-1471",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9642",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-204581",
          "CSAFPID-94309",
          "CSAFPID-1260",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-3661",
          "CSAFPID-3660",
          "CSAFPID-1973",
          "CSAFPID-396523",
          "CSAFPID-204638",
          "CSAFPID-135354",
          "CSAFPID-764797",
          "CSAFPID-764798",
          "CSAFPID-764799",
          "CSAFPID-764800",
          "CSAFPID-764801",
          "CSAFPID-764802",
          "CSAFPID-199883",
          "CSAFPID-912074",
          "CSAFPID-94393",
          "CSAFPID-912053",
          "CSAFPID-912594",
          "CSAFPID-951239"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-1471",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-1471.json"
        }
      ],
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2023-4759",
      "cwe": {
        "id": "CWE-59",
        "name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
          "title": "CWE-59"
        },
        {
          "category": "other",
          "text": "Improper Handling of Case Sensitivity",
          "title": "CWE-178"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-4759",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-4759.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2023-4759"
    },
    {
      "cve": "CVE-2023-35116",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9642",
          "CSAFPID-40303",
          "CSAFPID-1260",
          "CSAFPID-45194",
          "CSAFPID-3661",
          "CSAFPID-3660",
          "CSAFPID-1973",
          "CSAFPID-199883",
          "CSAFPID-951239",
          "CSAFPID-94309",
          "CSAFPID-179795",
          "CSAFPID-204566",
          "CSAFPID-204581",
          "CSAFPID-94393",
          "CSAFPID-396523",
          "CSAFPID-912053",
          "CSAFPID-912074",
          "CSAFPID-912594",
          "CSAFPID-228157",
          "CSAFPID-135354"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-35116",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35116.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9642",
            "CSAFPID-40303",
            "CSAFPID-1260",
            "CSAFPID-45194",
            "CSAFPID-3661",
            "CSAFPID-3660",
            "CSAFPID-1973",
            "CSAFPID-199883",
            "CSAFPID-951239",
            "CSAFPID-94309",
            "CSAFPID-179795",
            "CSAFPID-204566",
            "CSAFPID-204581",
            "CSAFPID-94393",
            "CSAFPID-396523",
            "CSAFPID-912053",
            "CSAFPID-912074",
            "CSAFPID-912594",
            "CSAFPID-228157",
            "CSAFPID-135354"
          ]
        }
      ],
      "title": "CVE-2023-35116"
    },
    {
      "cve": "CVE-2023-39743",
      "product_status": {
        "known_affected": [
          "CSAFPID-912053"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-39743",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39743.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912053"
          ]
        }
      ],
      "title": "CVE-2023-39743"
    },
    {
      "cve": "CVE-2023-51775",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1260",
          "CSAFPID-1973",
          "CSAFPID-3660",
          "CSAFPID-40303",
          "CSAFPID-45194",
          "CSAFPID-94309",
          "CSAFPID-94393",
          "CSAFPID-179795",
          "CSAFPID-199883",
          "CSAFPID-204566",
          "CSAFPID-204581",
          "CSAFPID-396523",
          "CSAFPID-912053",
          "CSAFPID-912074",
          "CSAFPID-912594",
          "CSAFPID-951239",
          "CSAFPID-228157",
          "CSAFPID-135354"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-51775",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51775.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1260",
            "CSAFPID-1973",
            "CSAFPID-3660",
            "CSAFPID-40303",
            "CSAFPID-45194",
            "CSAFPID-94309",
            "CSAFPID-94393",
            "CSAFPID-179795",
            "CSAFPID-199883",
            "CSAFPID-204566",
            "CSAFPID-204581",
            "CSAFPID-396523",
            "CSAFPID-912053",
            "CSAFPID-912074",
            "CSAFPID-912594",
            "CSAFPID-951239",
            "CSAFPID-228157",
            "CSAFPID-135354"
          ]
        }
      ],
      "title": "CVE-2023-51775"
    },
    {
      "cve": "CVE-2024-2511",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improperly Controlled Sequential Memory Allocation",
          "title": "CWE-1325"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-2511",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2511.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-2511"
    },
    {
      "cve": "CVE-2024-6345",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
          "title": "CWE-94"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-6345",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6345.json"
        }
      ],
      "title": "CVE-2024-6345"
    },
    {
      "cve": "CVE-2024-21190",
      "product_status": {
        "known_affected": [
          "CSAFPID-1673425"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21190",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21190.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673425"
          ]
        }
      ],
      "title": "CVE-2024-21190"
    },
    {
      "cve": "CVE-2024-21191",
      "product_status": {
        "known_affected": [
          "CSAFPID-1673426"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21191",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21191.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673426"
          ]
        }
      ],
      "title": "CVE-2024-21191"
    },
    {
      "cve": "CVE-2024-21192",
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21192",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21192.json"
        }
      ],
      "title": "CVE-2024-21192"
    },
    {
      "cve": "CVE-2024-21205",
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21205",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21205.json"
        }
      ],
      "title": "CVE-2024-21205"
    },
    {
      "cve": "CVE-2024-21215",
      "product_status": {
        "known_affected": [
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21215",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21215.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-21215"
    },
    {
      "cve": "CVE-2024-21216",
      "product_status": {
        "known_affected": [
          "CSAFPID-1973",
          "CSAFPID-3660"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21216",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21216.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1973",
            "CSAFPID-3660"
          ]
        }
      ],
      "title": "CVE-2024-21216"
    },
    {
      "cve": "CVE-2024-21234",
      "product_status": {
        "known_affected": [
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21234",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21234.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-21234"
    },
    {
      "cve": "CVE-2024-21246",
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21246",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21246.json"
        }
      ],
      "title": "CVE-2024-21246"
    },
    {
      "cve": "CVE-2024-21260",
      "product_status": {
        "known_affected": [
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21260",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21260.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-21260"
    },
    {
      "cve": "CVE-2024-21274",
      "product_status": {
        "known_affected": [
          "CSAFPID-1973",
          "CSAFPID-3660"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21274",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21274.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1973",
            "CSAFPID-3660"
          ]
        }
      ],
      "title": "CVE-2024-21274"
    },
    {
      "cve": "CVE-2024-22201",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-199883",
          "CSAFPID-1260",
          "CSAFPID-1973",
          "CSAFPID-3660",
          "CSAFPID-40303",
          "CSAFPID-45194",
          "CSAFPID-94309",
          "CSAFPID-94393",
          "CSAFPID-179795",
          "CSAFPID-204566",
          "CSAFPID-204581",
          "CSAFPID-396523",
          "CSAFPID-912053",
          "CSAFPID-912074",
          "CSAFPID-912594",
          "CSAFPID-951239",
          "CSAFPID-228157",
          "CSAFPID-135354"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22201",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22201.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-199883",
            "CSAFPID-1260",
            "CSAFPID-1973",
            "CSAFPID-3660",
            "CSAFPID-40303",
            "CSAFPID-45194",
            "CSAFPID-94309",
            "CSAFPID-94393",
            "CSAFPID-179795",
            "CSAFPID-204566",
            "CSAFPID-204581",
            "CSAFPID-396523",
            "CSAFPID-912053",
            "CSAFPID-912074",
            "CSAFPID-912594",
            "CSAFPID-951239",
            "CSAFPID-228157",
            "CSAFPID-135354"
          ]
        }
      ],
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22262",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673476",
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-22262",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673476",
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-23807",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23807",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23807.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-23807"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-199883",
          "CSAFPID-1260",
          "CSAFPID-1973",
          "CSAFPID-3660",
          "CSAFPID-40303",
          "CSAFPID-45194",
          "CSAFPID-94309",
          "CSAFPID-94393",
          "CSAFPID-179795",
          "CSAFPID-204566",
          "CSAFPID-204581",
          "CSAFPID-396523",
          "CSAFPID-912053",
          "CSAFPID-912074",
          "CSAFPID-912594",
          "CSAFPID-951239",
          "CSAFPID-228157",
          "CSAFPID-135354"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-199883",
            "CSAFPID-1260",
            "CSAFPID-1973",
            "CSAFPID-3660",
            "CSAFPID-40303",
            "CSAFPID-45194",
            "CSAFPID-94309",
            "CSAFPID-94393",
            "CSAFPID-179795",
            "CSAFPID-204566",
            "CSAFPID-204581",
            "CSAFPID-396523",
            "CSAFPID-912053",
            "CSAFPID-912074",
            "CSAFPID-912594",
            "CSAFPID-951239",
            "CSAFPID-228157",
            "CSAFPID-135354"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-25269",
      "cwe": {
        "id": "CWE-401",
        "name": "Missing Release of Memory after Effective Lifetime"
      },
      "notes": [
        {
          "category": "other",
          "text": "Missing Release of Memory after Effective Lifetime",
          "title": "CWE-401"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912053"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-25269",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25269.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912053"
          ]
        }
      ],
      "title": "CVE-2024-25269"
    },
    {
      "cve": "CVE-2024-28182",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Detection of Error Condition Without Action",
          "title": "CWE-390"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912074",
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-28182",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28182.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912074",
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-28182"
    },
    {
      "cve": "CVE-2024-28752",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Server-Side Request Forgery (SSRF)",
          "title": "CWE-918"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1673476",
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-28752",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28752.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.3,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1673476",
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-28752"
    },
    {
      "cve": "CVE-2024-29131",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-228157",
          "CSAFPID-204566",
          "CSAFPID-40303",
          "CSAFPID-94309",
          "CSAFPID-912053",
          "CSAFPID-179795",
          "CSAFPID-45194",
          "CSAFPID-135354",
          "CSAFPID-3660",
          "CSAFPID-1973"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29131",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29131.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-228157",
            "CSAFPID-204566",
            "CSAFPID-40303",
            "CSAFPID-94309",
            "CSAFPID-912053",
            "CSAFPID-179795",
            "CSAFPID-45194",
            "CSAFPID-135354",
            "CSAFPID-3660",
            "CSAFPID-1973"
          ]
        }
      ],
      "title": "CVE-2024-29131"
    },
    {
      "cve": "CVE-2024-36052",
      "product_status": {
        "known_affected": [
          "CSAFPID-912053"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-36052",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36052.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912053"
          ]
        }
      ],
      "title": "CVE-2024-36052"
    },
    {
      "cve": "CVE-2024-38999",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
          "title": "CWE-1321"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-9642",
          "CSAFPID-228157"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38999",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 10.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-9642",
            "CSAFPID-228157"
          ]
        }
      ],
      "title": "CVE-2024-38999"
    },
    {
      "cve": "CVE-2024-45492",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-912053"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-45492",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-912053"
          ]
        }
      ],
      "title": "CVE-2024-45492"
    }
  ]
}

NCSC-2024-0466

Vulnerability from csaf_ncscnl - Published: 2024-12-06 13:05 - Updated: 2024-12-06 13:05

Summary

Kwetsbaarheden verholpen in Atlassian producten

Notes

Feiten: Atlassian heeft kwetsbaarheden verholpen in diverse producten als Jira, Bamboo en Confluence.

Interpretaties: De kwetsbaarheden bevinden zich in verschillende third party componenten van ontwikkelaars zoals Oracle, RedHat en het Apache consortium. Deze kwetsbaarheden kunnen leiden tot geheugenuitputting en Denial-of-Service (DoS) door onjuiste invoerbeperkingen. Aanvallers kunnen deze kwetsbaarheden misbruiken door speciaal vervaardigde verzoeken te sturen, wat kan resulteren in systeeminstabiliteit en crashes. Voor de kwetsbaarheden zijn door de diverse ontwikkelaars updates uitgebracht om ze te verhelpen. Atlassian heeft de updates verwerkt in de eigen producten.

Oplossingen: Atlassian heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans: medium

Schade: high

CWE-755: Improper Handling of Exceptional Conditions

CWE-347: Improper Verification of Cryptographic Signature

CWE-1050: Excessive Platform Resource Consumption within a Loop

CWE-23: Relative Path Traversal

CWE-1333: Inefficient Regular Expression Complexity

CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-400: Uncontrolled Resource Consumption

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-502: Deserialization of Untrusted Data

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')

CWE-20: Improper Input Validation

CVE-2022-38900

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—

CVE-2023-46234

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—

CVE-2023-52428

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 3 products

Product	Identifier	Version
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—
jira_software atlassian	`cpe:2.3:a:atlassian:jira_software::::::::`	—
bamboo atlassian	`cpe:2.3:a:atlassian:bamboo::::::::`	—

CVE-2024-4068

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—

CVE-2024-21697

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Known affected 4 products

Product	Identifier	Version
sourcetree_for_mac atlassian	`cpe:2.3:a:atlassian:sourcetree_for_mac::::::::`	—
sourcetree_for_windows atlassian	`cpe:2.3:a:atlassian:sourcetree_for_windows::::::::`	—
sourcetree atlassian	`cpe:2.3:a:atlassian:sourcetree::::::macos::*`	—
sourcetree atlassian	`cpe:2.3:a:atlassian:sourcetree::::::windows::*`	—

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
bitbucket atlassian	`cpe:2.3:a:atlassian:bitbucket:-:::::::*`	—
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—

CVE-2024-30172

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Known affected 6 products

Product	Identifier	Version
atlassian_confluence__7.19.26 atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__7.19.26::::::::`	—
atlassian_confluence__9.0.1 atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__9.0.1::::::::`	—
atlassian_confluence__8.9.4 atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__8.9.4::::::::`	—
atlassian_confluence__8.5.12 atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__8.5.12::::::::`	—
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—
bitbucket atlassian	`cpe:2.3:a:atlassian:bitbucket:-:::::::*`	—

CVE-2024-34750

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-755 - Improper Handling of Exceptional Conditions

Affected products

Known affected 15 products

Product	Identifier	Version
atlassian_confluence__8.5.14__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__8.5.14__lts_::::::::`	—
atlassian_confluence__7.19.26__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_confluence__7.19.26__lts_::::::::`	—
atlassian_jira_software_service_management_data_center__5.17.1 atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software_service_management_data_center__5.17.1::::::::`	—
atlassian_jira_software_service_management__5.12.12__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software_service_management__5.12.12__lts_::::::::`	—
atlassian_jira_software_service_management__5.4.25__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software_service_management__5.4.25__lts_::::::::`	—
atlassian_confluence_data_center__9.0.1 atlassian	`cpe:2.3:a:atlassian:atlassian_confluence_data_center__9.0.1::::::::`	—
atlassian_jira_software_data_center__9.17.1 atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software_data_center__9.17.1::::::::`	—
atlassian_jira_software__9.12.12__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software__9.12.12__lts_::::::::`	—
atlassian_jira_software__9.4.25__lts_ atlassian	`cpe:2.3:a:atlassian:atlassian_jira_software__9.4.25__lts_::::::::`	—
atlassian_bamboo__9.2.17 atlassian	`cpe:2.3:a:atlassian:atlassian_bamboo__9.2.17::::::::`	—
atlassian_bitbucket__8.19.9 atlassian	`cpe:2.3:a:atlassian:atlassian_bitbucket__8.19.9::::::::`	—
atlassian_bamboo__9.6.4 atlassian	`cpe:2.3:a:atlassian:atlassian_bamboo__9.6.4::::::::`	—
atlassian_bitbucket__9.0.0 atlassian	`cpe:2.3:a:atlassian:atlassian_bitbucket__9.0.0::::::::`	—
atlassian_bitbucket__8.9.19 atlassian	`cpe:2.3:a:atlassian:atlassian_bitbucket__8.9.19::::::::`	—
atlassian_bamboo__10.0.0 atlassian	`cpe:2.3:a:atlassian:atlassian_bamboo__10.0.0::::::::`	—

CVE-2024-38286

CWE-400 - Uncontrolled Resource Consumption

CVE-2024-38816

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
confluence atlassian	`cpe:2.3:a:atlassian:confluence::::::::`	—
bamboo atlassian	`cpe:2.3:a:atlassian:bamboo::::::::`	—

CVE-2024-45801

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
jira_software atlassian	`cpe:2.3:a:atlassian:jira_software::::::::`	—

CVE-2024-47561

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
bamboo atlassian	`cpe:2.3:a:atlassian:bamboo::::::::`	—

References

13 references

URL	Category
https://confluence.atlassian.com/security/securit…	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Atlassian heeft kwetsbaarheden verholpen in diverse producten als Jira, Bamboo en Confluence.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden bevinden zich in verschillende third party componenten van ontwikkelaars zoals Oracle, RedHat en het Apache consortium. Deze kwetsbaarheden kunnen leiden tot geheugenuitputting en Denial-of-Service (DoS) door onjuiste invoerbeperkingen. Aanvallers kunnen deze kwetsbaarheden misbruiken door speciaal vervaardigde verzoeken te sturen, wat kan resulteren in systeeminstabiliteit en crashes.\nVoor de kwetsbaarheden zijn door de diverse ontwikkelaars updates uitgebracht om ze te verhelpen. Atlassian heeft de updates verwerkt in de eigen producten.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Atlassian heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Handling of Exceptional Conditions",
        "title": "CWE-755"
      },
      {
        "category": "general",
        "text": "Improper Verification of Cryptographic Signature",
        "title": "CWE-347"
      },
      {
        "category": "general",
        "text": "Excessive Platform Resource Consumption within a Loop",
        "title": "CWE-1050"
      },
      {
        "category": "general",
        "text": "Relative Path Traversal",
        "title": "CWE-23"
      },
      {
        "category": "general",
        "text": "Inefficient Regular Expression Complexity",
        "title": "CWE-1333"
      },
      {
        "category": "general",
        "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
        "title": "CWE-1321"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
        "title": "CWE-22"
      },
      {
        "category": "general",
        "text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
        "title": "CWE-835"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - certbundde",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-19-2024-1456179091.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Atlassian producten",
    "tracking": {
      "current_release_date": "2024-12-06T13:05:55.904619Z",
      "id": "NCSC-2024-0466",
      "initial_release_date": "2024-12-06T13:05:55.904619Z",
      "revision_history": [
        {
          "date": "2024-12-06T13:05:55.904619Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "atlassian_bamboo__10.0.0",
            "product": {
              "name": "atlassian_bamboo__10.0.0",
              "product_id": "CSAFPID-1645374",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bamboo__10.0.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_bamboo__9.2.17",
            "product": {
              "name": "atlassian_bamboo__9.2.17",
              "product_id": "CSAFPID-1621163",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bamboo__9.2.17:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_bamboo__9.6.4",
            "product": {
              "name": "atlassian_bamboo__9.6.4",
              "product_id": "CSAFPID-1645371",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bamboo__9.6.4:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_bitbucket__8.19.9",
            "product": {
              "name": "atlassian_bitbucket__8.19.9",
              "product_id": "CSAFPID-1645370",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bitbucket__8.19.9:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_bitbucket__8.9.19",
            "product": {
              "name": "atlassian_bitbucket__8.9.19",
              "product_id": "CSAFPID-1645373",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bitbucket__8.9.19:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_bitbucket__9.0.0",
            "product": {
              "name": "atlassian_bitbucket__9.0.0",
              "product_id": "CSAFPID-1645372",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_bitbucket__9.0.0:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__7.19.26",
            "product": {
              "name": "atlassian_confluence__7.19.26",
              "product_id": "CSAFPID-1621160",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__7.19.26:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__7.19.26__lts_",
            "product": {
              "name": "atlassian_confluence__7.19.26__lts_",
              "product_id": "CSAFPID-1621135",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__7.19.26__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__8.5.12",
            "product": {
              "name": "atlassian_confluence__8.5.12",
              "product_id": "CSAFPID-1645510",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__8.5.12:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__8.5.14__lts_",
            "product": {
              "name": "atlassian_confluence__8.5.14__lts_",
              "product_id": "CSAFPID-1621133",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__8.5.14__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__8.9.4",
            "product": {
              "name": "atlassian_confluence__8.9.4",
              "product_id": "CSAFPID-1645509",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__8.9.4:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence__9.0.1",
            "product": {
              "name": "atlassian_confluence__9.0.1",
              "product_id": "CSAFPID-1621161",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence__9.0.1:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_confluence_data_center__9.0.1",
            "product": {
              "name": "atlassian_confluence_data_center__9.0.1",
              "product_id": "CSAFPID-1621140",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_confluence_data_center__9.0.1:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software__9.12.12__lts_",
            "product": {
              "name": "atlassian_jira_software__9.12.12__lts_",
              "product_id": "CSAFPID-1621142",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software__9.12.12__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software__9.4.25__lts_",
            "product": {
              "name": "atlassian_jira_software__9.4.25__lts_",
              "product_id": "CSAFPID-1621143",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software__9.4.25__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software_data_center__9.17.1",
            "product": {
              "name": "atlassian_jira_software_data_center__9.17.1",
              "product_id": "CSAFPID-1621141",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software_data_center__9.17.1:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software_service_management__5.12.12__lts_",
            "product": {
              "name": "atlassian_jira_software_service_management__5.12.12__lts_",
              "product_id": "CSAFPID-1621138",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software_service_management__5.12.12__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software_service_management__5.4.25__lts_",
            "product": {
              "name": "atlassian_jira_software_service_management__5.4.25__lts_",
              "product_id": "CSAFPID-1621139",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software_service_management__5.4.25__lts_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "atlassian_jira_software_service_management_data_center__5.17.1",
            "product": {
              "name": "atlassian_jira_software_service_management_data_center__5.17.1",
              "product_id": "CSAFPID-1621137",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:atlassian_jira_software_service_management_data_center__5.17.1:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "bamboo",
            "product": {
              "name": "bamboo",
              "product_id": "CSAFPID-716889",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "bitbucket",
            "product": {
              "name": "bitbucket",
              "product_id": "CSAFPID-1725084",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:bitbucket:-:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "confluence",
            "product": {
              "name": "confluence",
              "product_id": "CSAFPID-551338",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:confluence:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "jira_software",
            "product": {
              "name": "jira_software",
              "product_id": "CSAFPID-1725085",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:jira_software:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "sourcetree",
            "product": {
              "name": "sourcetree",
              "product_id": "CSAFPID-1724900",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:sourcetree:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "sourcetree",
            "product": {
              "name": "sourcetree",
              "product_id": "CSAFPID-1725556",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:sourcetree:*:*:*:*:*:macos:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "sourcetree",
            "product": {
              "name": "sourcetree",
              "product_id": "CSAFPID-1725557",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:sourcetree:*:*:*:*:*:windows:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "sourcetree_for_mac",
            "product": {
              "name": "sourcetree_for_mac",
              "product_id": "CSAFPID-1724286",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:sourcetree_for_mac:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "sourcetree_for_windows",
            "product": {
              "name": "sourcetree_for_windows",
              "product_id": "CSAFPID-1724287",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:atlassian:sourcetree_for_windows:*:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "atlassian"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-38900",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-551338"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-38900",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-38900.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-551338"
          ]
        }
      ],
      "title": "CVE-2022-38900"
    },
    {
      "cve": "CVE-2023-46234",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Verification of Cryptographic Signature",
          "title": "CWE-347"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-551338"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-46234",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46234.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-551338"
          ]
        }
      ],
      "title": "CVE-2023-46234"
    },
    {
      "cve": "CVE-2023-52428",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-551338",
          "CSAFPID-1725085",
          "CSAFPID-716889"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-52428",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52428.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-551338",
            "CSAFPID-1725085",
            "CSAFPID-716889"
          ]
        }
      ],
      "title": "CVE-2023-52428"
    },
    {
      "cve": "CVE-2024-4068",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "notes": [
        {
          "category": "other",
          "text": "Excessive Platform Resource Consumption within a Loop",
          "title": "CWE-1050"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-551338"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-4068",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4068.json"
        }
      ],
      "title": "CVE-2024-4068"
    },
    {
      "cve": "CVE-2024-21697",
      "product_status": {
        "known_affected": [
          "CSAFPID-1724286",
          "CSAFPID-1724287",
          "CSAFPID-1725556",
          "CSAFPID-1725557"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21697",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21697.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-1724286",
            "CSAFPID-1724287",
            "CSAFPID-1725556",
            "CSAFPID-1725557"
          ]
        }
      ],
      "title": "CVE-2024-21697"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1725084",
          "CSAFPID-551338"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1725084",
            "CSAFPID-551338"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-30172",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
          "title": "CWE-835"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1621160",
          "CSAFPID-1621161",
          "CSAFPID-1645509",
          "CSAFPID-1645510",
          "CSAFPID-551338",
          "CSAFPID-1725084"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-30172",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-30172.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1621160",
            "CSAFPID-1621161",
            "CSAFPID-1645509",
            "CSAFPID-1645510",
            "CSAFPID-551338",
            "CSAFPID-1725084"
          ]
        }
      ],
      "title": "CVE-2024-30172"
    },
    {
      "cve": "CVE-2024-34750",
      "cwe": {
        "id": "CWE-755",
        "name": "Improper Handling of Exceptional Conditions"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Handling of Exceptional Conditions",
          "title": "CWE-755"
        },
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1621133",
          "CSAFPID-1621135",
          "CSAFPID-1621137",
          "CSAFPID-1621138",
          "CSAFPID-1621139",
          "CSAFPID-1621140",
          "CSAFPID-1621141",
          "CSAFPID-1621142",
          "CSAFPID-1621143",
          "CSAFPID-1621163",
          "CSAFPID-1645370",
          "CSAFPID-1645371",
          "CSAFPID-1645372",
          "CSAFPID-1645373",
          "CSAFPID-1645374"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-34750",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34750.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1621133",
            "CSAFPID-1621135",
            "CSAFPID-1621137",
            "CSAFPID-1621138",
            "CSAFPID-1621139",
            "CSAFPID-1621140",
            "CSAFPID-1621141",
            "CSAFPID-1621142",
            "CSAFPID-1621143",
            "CSAFPID-1621163",
            "CSAFPID-1645370",
            "CSAFPID-1645371",
            "CSAFPID-1645372",
            "CSAFPID-1645373",
            "CSAFPID-1645374"
          ]
        }
      ],
      "title": "CVE-2024-34750"
    },
    {
      "cve": "CVE-2024-38286",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38286",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38286.json"
        }
      ],
      "title": "CVE-2024-38286"
    },
    {
      "cve": "CVE-2024-38816",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        },
        {
          "category": "other",
          "text": "Relative Path Traversal",
          "title": "CWE-23"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-551338",
          "CSAFPID-716889"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38816",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38816.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-551338",
            "CSAFPID-716889"
          ]
        }
      ],
      "title": "CVE-2024-38816"
    },
    {
      "cve": "CVE-2024-45801",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inefficient Regular Expression Complexity",
          "title": "CWE-1333"
        },
        {
          "category": "other",
          "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
          "title": "CWE-1321"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1725085"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-45801",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45801.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1725085"
          ]
        }
      ],
      "title": "CVE-2024-45801"
    },
    {
      "cve": "CVE-2024-47561",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-716889"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-47561",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-716889"
          ]
        }
      ],
      "title": "CVE-2024-47561"
    }
  ]
}

NCSC-2025-0123

Vulnerability from csaf_ncscnl - Published: 2025-04-16 08:37 - Updated: 2025-04-16 08:37

Summary

Kwetsbaarheden verholpen in Oracle Database Producten

Notes

Feiten: Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.

Interpretaties: De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores variërend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.

Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans: medium

Schade: high

CWE-385: Covert Timing Channel

CWE-347: Improper Verification of Cryptographic Signature

CWE-1286: Improper Validation of Syntactic Correctness of Input

CWE-125: Out-of-bounds Read

CWE-404: Improper Resource Shutdown or Release

CWE-400: Uncontrolled Resource Consumption

CWE-502: Deserialization of Untrusted Data

CWE-918: Server-Side Request Forgery (SSRF)

CWE-787: Out-of-bounds Write

CWE-20: Improper Input Validation

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-44: Path Equivalence: 'file.name' (Internal Dot)

CWE-226: Sensitive Information in Resource Not Removed Before Reuse

CWE-706: Use of Incorrectly-Resolved Name or Reference

CWE-669: Incorrect Resource Transfer Between Spheres

CWE-755: Improper Handling of Exceptional Conditions

CWE-178: Improper Handling of Case Sensitivity

CWE-193: Off-by-one Error

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

CWE-523: Unprotected Transport of Credentials

CWE-190: Integer Overflow or Wraparound

CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute

CWE-285: Improper Authorization

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-284: Improper Access Control

CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-476: NULL Pointer Dereference

CWE-459: Incomplete Cleanup

CWE-94: Improper Control of Generation of Code ('Code Injection')

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-674: Uncontrolled Recursion

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CWE-122: Heap-based Buffer Overflow

CWE-121: Stack-based Buffer Overflow

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-269: Improper Privilege Management

CWE-287: Improper Authentication

CVE-2020-1935

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-1938

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-285 - Improper Authorization

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-9484

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-11996

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-13935

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-13943

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-36843

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-24122

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-25122

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-25329

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-30640

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-287 - Improper Authentication

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-33037

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-41079

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-41184

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-42575

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-43980

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-3786

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-193 - Off-by-one Error

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-25762

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-226 - Sensitive Information in Resource Not Removed Before Reuse

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-42252

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-28708

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-34053

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-41080

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-42795

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-459 - Incomplete Cleanup

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-44487

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-45648

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-46589

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-6763

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-8176

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-8184

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-9143

CWE-787 - Out-of-bounds Write

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11053

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11233

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

CWE-122 - Heap-based Buffer Overflow

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11234

7.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11236

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-13176

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-385 - Covert Timing Channel

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-23672

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-459 - Incomplete Cleanup

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-36114

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE-125 - Out-of-bounds Read

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-37891

4.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CWE-669 - Incorrect Resource Transfer Between Spheres

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38819

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38820

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38999

10.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-39338

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-47554

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-47561

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-53382

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-57699

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-21578

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-24813

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-24970

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-25193

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-26791

4.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30694

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30701

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30702

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30733

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30736

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

References

58 references

URL	Category
https://www.oracle.com/security-alerts/cpuapr2025.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores vari\u00ebrend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Covert Timing Channel",
        "title": "CWE-385"
      },
      {
        "category": "general",
        "text": "Improper Verification of Cryptographic Signature",
        "title": "CWE-347"
      },
      {
        "category": "general",
        "text": "Improper Validation of Syntactic Correctness of Input",
        "title": "CWE-1286"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Server-Side Request Forgery (SSRF)",
        "title": "CWE-918"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      },
      {
        "category": "general",
        "text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
        "title": "CWE-44"
      },
      {
        "category": "general",
        "text": "Sensitive Information in Resource Not Removed Before Reuse",
        "title": "CWE-226"
      },
      {
        "category": "general",
        "text": "Use of Incorrectly-Resolved Name or Reference",
        "title": "CWE-706"
      },
      {
        "category": "general",
        "text": "Incorrect Resource Transfer Between Spheres",
        "title": "CWE-669"
      },
      {
        "category": "general",
        "text": "Improper Handling of Exceptional Conditions",
        "title": "CWE-755"
      },
      {
        "category": "general",
        "text": "Improper Handling of Case Sensitivity",
        "title": "CWE-178"
      },
      {
        "category": "general",
        "text": "Off-by-one Error",
        "title": "CWE-193"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      },
      {
        "category": "general",
        "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
        "title": "CWE-444"
      },
      {
        "category": "general",
        "text": "Unprotected Transport of Credentials",
        "title": "CWE-523"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
        "title": "CWE-614"
      },
      {
        "category": "general",
        "text": "Improper Authorization",
        "title": "CWE-285"
      },
      {
        "category": "general",
        "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
        "title": "CWE-362"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
        "title": "CWE-1321"
      },
      {
        "category": "general",
        "text": "NULL Pointer Dereference",
        "title": "CWE-476"
      },
      {
        "category": "general",
        "text": "Incomplete Cleanup",
        "title": "CWE-459"
      },
      {
        "category": "general",
        "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
        "title": "CWE-94"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
        "title": "CWE-74"
      },
      {
        "category": "general",
        "text": "Uncontrolled Recursion",
        "title": "CWE-674"
      },
      {
        "category": "general",
        "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
        "title": "CWE-22"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Stack-based Buffer Overflow",
        "title": "CWE-121"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Improper Privilege Management",
        "title": "CWE-269"
      },
      {
        "category": "general",
        "text": "Improper Authentication",
        "title": "CWE-287"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; nvd; oracle",
        "url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Oracle Database Producten",
    "tracking": {
      "current_release_date": "2025-04-16T08:37:39.412900Z",
      "generator": {
        "date": "2025-02-25T15:15:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.0"
        }
      },
      "id": "NCSC-2025-0123",
      "initial_release_date": "2025-04-16T08:37:39.412900Z",
      "revision_history": [
        {
          "date": "2025-04-16T08:37:39.412900Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/22.1",
                    "product": {
                      "name": "vers:unknown/22.1",
                      "product_id": "CSAFPID-1304603"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Database Server"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/13.5.0.0",
                    "product": {
                      "name": "vers:unknown/13.5.0.0",
                      "product_id": "CSAFPID-1201359"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Enterprise Manager for Oracle Database"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                    "product": {
                      "name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                      "product_id": "CSAFPID-2698376"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:unknown/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698377"
                    }
                  }
                ],
                "category": "product_name",
                "name": "GoldenGate"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.1",
                    "product": {
                      "name": "vers:oracle/23.1",
                      "product_id": "CSAFPID-1238473"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/2.0",
                    "product": {
                      "name": "vers:unknown/2.0",
                      "product_id": "CSAFPID-1237753"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/20.2",
                    "product": {
                      "name": "vers:unknown/20.2",
                      "product_id": "CSAFPID-1238475"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/23.1",
                    "product": {
                      "name": "vers:unknown/23.1",
                      "product_id": "CSAFPID-1296375"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/none",
                    "product": {
                      "name": "vers:unknown/none",
                      "product_id": "CSAFPID-1237603"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Big Data Spatial and Graph"
              }
            ],
            "category": "product_family",
            "name": "Oracle"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=19.3|\u003c=19.22",
                "product": {
                  "name": "vers:oracle/\u003e=19.3|\u003c=19.22",
                  "product_id": "CSAFPID-1145825"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=21.3|\u003c=21.13",
                "product": {
                  "name": "vers:oracle/\u003e=21.3|\u003c=21.13",
                  "product_id": "CSAFPID-1145826"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.3|\u003c=19.26",
                    "product": {
                      "name": "vers:oracle/\u003e=19.3|\u003c=19.26",
                      "product_id": "CSAFPID-2698969",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698968",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.4|\u003c=21.16",
                    "product": {
                      "name": "vers:oracle/\u003e=21.4|\u003c=21.16",
                      "product_id": "CSAFPID-1839905",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                      "product_id": "CSAFPID-2698934",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Database Server"
              }
            ],
            "category": "product_family",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/13.5.0.0",
                "product": {
                  "name": "vers:oracle/13.5.0.0",
                  "product_id": "CSAFPID-1144644"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Enterprise Manager for Oracle Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.5.0",
                    "product": {
                      "name": "vers:oracle/1.5.0",
                      "product_id": "CSAFPID-2699002",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.6.0",
                    "product": {
                      "name": "vers:oracle/1.6.0",
                      "product_id": "CSAFPID-2699003",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.6.1",
                    "product": {
                      "name": "vers:oracle/1.6.1",
                      "product_id": "CSAFPID-2699004",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle NoSQL Database"
              }
            ],
            "category": "product_family",
            "name": "Oracle NoSQL Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
                    "product": {
                      "name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
                      "product_id": "CSAFPID-2699053",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle TimesTen In-Memory Database"
              }
            ],
            "category": "product_family",
            "name": "Oracle TimesTen In-Memory Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/25.1.0",
                    "product": {
                      "name": "vers:oracle/25.1.0",
                      "product_id": "CSAFPID-2698932",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/25.2.0",
                    "product": {
                      "name": "vers:oracle/25.2.0",
                      "product_id": "CSAFPID-2698931",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
                    "product": {
                      "name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
                      "product_id": "CSAFPID-2698930",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
                    "product": {
                      "name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
                      "product_id": "CSAFPID-2698933",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Autonomous Health Framework"
              }
            ],
            "category": "product_family",
            "name": "Oracle Autonomous Health Framework"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/21.7.1.0.0",
                    "product": {
                      "name": "vers:oracle/21.7.1.0.0",
                      "product_id": "CSAFPID-2698943",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Essbase"
              }
            ],
            "category": "product_family",
            "name": "Oracle Essbase"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
                      "product_id": "CSAFPID-2698949",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "GoldenGate Stream Analytics"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                      "product_id": "CSAFPID-2698941",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698942",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                      "product_id": "CSAFPID-2699022",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle GoldenGate"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
                      "product_id": "CSAFPID-1839977",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
                      "product_id": "CSAFPID-1840034",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.6",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.6",
                      "product_id": "CSAFPID-1840035",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle GoldenGate Big Data and Application Adapters"
              }
            ],
            "category": "product_family",
            "name": "Oracle GoldenGate"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
                "product": {
                  "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
                  "product_id": "CSAFPID-1144602"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle GoldenGate Stream Analytics"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c23.1",
                "product": {
                  "name": "vers:oracle/\u003c23.1",
                  "product_id": "CSAFPID-1145800"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:unknown/2.0",
                "product": {
                  "name": "vers:unknown/2.0",
                  "product_id": "CSAFPID-356315",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:unknown/23.1",
                "product": {
                  "name": "vers:unknown/23.1",
                  "product_id": "CSAFPID-356152"
                }
              }
            ],
            "category": "product_name",
            "name": "Big Data Spatial and Graph"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.4.3",
                    "product": {
                      "name": "vers:oracle/23.4.3",
                      "product_id": "CSAFPID-2699065",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/24.3.0",
                    "product": {
                      "name": "vers:oracle/24.3.0",
                      "product_id": "CSAFPID-2699066",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.4.4",
                    "product": {
                      "name": "vers:oracle/23.4.4",
                      "product_id": "CSAFPID-1840017",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/24.4.0",
                    "product": {
                      "name": "vers:oracle/24.4.0",
                      "product_id": "CSAFPID-1840013",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Graph Server and Client"
              }
            ],
            "category": "product_family",
            "name": "Oracle Graph Server and Client"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=22.4.7",
                "product": {
                  "name": "vers:oracle/\u003c=22.4.7",
                  "product_id": "CSAFPID-1145419",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=23.4.2",
                "product": {
                  "name": "vers:oracle/\u003c=23.4.2",
                  "product_id": "CSAFPID-1145421",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=24.1.0",
                "product": {
                  "name": "vers:oracle/\u003c=24.1.0",
                  "product_id": "CSAFPID-1145422",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Graph Server and Client"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/3.0.6",
                "product": {
                  "name": "vers:oracle/3.0.6",
                  "product_id": "CSAFPID-1145420",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Big Data Spatial and Graph"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.1",
                    "product": {
                      "name": "vers:oracle/12.1.0.1",
                      "product_id": "CSAFPID-2699109",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.2",
                    "product": {
                      "name": "vers:oracle/12.1.0.2",
                      "product_id": "CSAFPID-2699107",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.3",
                    "product": {
                      "name": "vers:oracle/12.1.0.3",
                      "product_id": "CSAFPID-2699106",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.0",
                    "product": {
                      "name": "vers:oracle/18.1.0.0",
                      "product_id": "CSAFPID-2699110",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.1",
                    "product": {
                      "name": "vers:oracle/18.1.0.1",
                      "product_id": "CSAFPID-2698972",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.2",
                    "product": {
                      "name": "vers:oracle/18.1.0.2",
                      "product_id": "CSAFPID-2699108",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Secure Backup"
              }
            ],
            "category": "product_family",
            "name": "Oracle Secure Backup"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:semver/19.3|\u003c=19.26",
                "product": {
                  "name": "vers:semver/19.3|\u003c=19.26",
                  "product_id": "CSAFPID-2698485"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/21.3|\u003c=21.17",
                "product": {
                  "name": "vers:semver/21.3|\u003c=21.17",
                  "product_id": "CSAFPID-2698486"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/23.4|\u003c=23.7",
                "product": {
                  "name": "vers:semver/23.4|\u003c=23.7",
                  "product_id": "CSAFPID-2698487"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.1",
                "product": {
                  "name": "vers:semver/12.1.0.1",
                  "product_id": "CSAFPID-2698463"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.2",
                "product": {
                  "name": "vers:semver/12.1.0.2",
                  "product_id": "CSAFPID-2698464"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.3",
                "product": {
                  "name": "vers:semver/12.1.0.3",
                  "product_id": "CSAFPID-2698465"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.0",
                "product": {
                  "name": "vers:semver/18.1.0.0",
                  "product_id": "CSAFPID-2698466"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.1",
                "product": {
                  "name": "vers:semver/18.1.0.1",
                  "product_id": "CSAFPID-2698467"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.2",
                "product": {
                  "name": "vers:semver/18.1.0.2",
                  "product_id": "CSAFPID-2698468"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Secure Backup"
          }
        ],
        "category": "vendor",
        "name": "Oracle Corporation"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-1935",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-1935",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1935.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-1935"
    },
    {
      "cve": "CVE-2020-1938",
      "cwe": {
        "id": "CWE-285",
        "name": "Improper Authorization"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authorization",
          "title": "CWE-285"
        },
        {
          "category": "other",
          "text": "Improper Privilege Management",
          "title": "CWE-269"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-1938",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1938.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-1938"
    },
    {
      "cve": "CVE-2020-9484",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-9484",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-9484.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-9484"
    },
    {
      "cve": "CVE-2020-11996",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-11996",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-11996.json"
        }
      ],
      "title": "CVE-2020-11996"
    },
    {
      "cve": "CVE-2020-13935",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-13935",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13935.json"
        }
      ],
      "title": "CVE-2020-13935"
    },
    {
      "cve": "CVE-2020-13943",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-13943",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13943.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-13943"
    },
    {
      "cve": "CVE-2020-36843",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Verification of Cryptographic Signature",
          "title": "CWE-347"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-36843",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-36843.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-36843"
    },
    {
      "cve": "CVE-2021-24122",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-24122",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-24122.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-24122"
    },
    {
      "cve": "CVE-2021-25122",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-25122",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25122.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-25122"
    },
    {
      "cve": "CVE-2021-25329",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-25329",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25329.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-25329"
    },
    {
      "cve": "CVE-2021-30640",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authentication",
          "title": "CWE-287"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-30640",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-30640.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-30640"
    },
    {
      "cve": "CVE-2021-33037",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-33037",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-33037.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-33037"
    },
    {
      "cve": "CVE-2021-41079",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-41079",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41079.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-41079"
    },
    {
      "cve": "CVE-2021-41184",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-41184",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41184.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-42575",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-42575",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-42575.json"
        }
      ],
      "title": "CVE-2021-42575"
    },
    {
      "cve": "CVE-2021-43980",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-43980",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-43980.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-43980"
    },
    {
      "cve": "CVE-2022-3786",
      "cwe": {
        "id": "CWE-193",
        "name": "Off-by-one Error"
      },
      "notes": [
        {
          "category": "other",
          "text": "Off-by-one Error",
          "title": "CWE-193"
        },
        {
          "category": "other",
          "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
          "title": "CWE-120"
        },
        {
          "category": "other",
          "text": "NULL Pointer Dereference",
          "title": "CWE-476"
        },
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-3786",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3786.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-3786"
    },
    {
      "cve": "CVE-2022-25762",
      "cwe": {
        "id": "CWE-226",
        "name": "Sensitive Information in Resource Not Removed Before Reuse"
      },
      "notes": [
        {
          "category": "other",
          "text": "Sensitive Information in Resource Not Removed Before Reuse",
          "title": "CWE-226"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Improper Handling of Exceptional Conditions",
          "title": "CWE-755"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-25762",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-25762.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-25762"
    },
    {
      "cve": "CVE-2022-42252",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-42252",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42252.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-42252"
    },
    {
      "cve": "CVE-2023-28708",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "other",
          "text": "Unprotected Transport of Credentials",
          "title": "CWE-523"
        },
        {
          "category": "other",
          "text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
          "title": "CWE-614"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-28708",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28708.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-28708"
    },
    {
      "cve": "CVE-2023-34053",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-34053",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34053.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-34053"
    },
    {
      "cve": "CVE-2023-41080",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-41080",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41080.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-41080"
    },
    {
      "cve": "CVE-2023-42795",
      "cwe": {
        "id": "CWE-459",
        "name": "Incomplete Cleanup"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Cleanup",
          "title": "CWE-459"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-42795",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-42795.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-42795"
    },
    {
      "cve": "CVE-2023-44487",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-44487",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-45648",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-45648",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-45648.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-45648"
    },
    {
      "cve": "CVE-2023-46589",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-46589",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46589.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2024-6763",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Syntactic Correctness of Input",
          "title": "CWE-1286"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-6763",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6763.json"
        }
      ],
      "title": "CVE-2024-6763"
    },
    {
      "cve": "CVE-2024-8176",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        },
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8176",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8176.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-8176"
    },
    {
      "cve": "CVE-2024-8184",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8184",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8184.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-8184"
    },
    {
      "cve": "CVE-2024-9143",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-9143",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json"
        }
      ],
      "title": "CVE-2024-9143"
    },
    {
      "cve": "CVE-2024-11053",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11053",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11053.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11053"
    },
    {
      "cve": "CVE-2024-11233",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11233",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11233.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11233"
    },
    {
      "cve": "CVE-2024-11234",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
          "title": "CWE-74"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11234",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11234.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11234"
    },
    {
      "cve": "CVE-2024-11236",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11236",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11236.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11236"
    },
    {
      "cve": "CVE-2024-13176",
      "cwe": {
        "id": "CWE-385",
        "name": "Covert Timing Channel"
      },
      "notes": [
        {
          "category": "other",
          "text": "Covert Timing Channel",
          "title": "CWE-385"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-13176",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-13176.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-13176"
    },
    {
      "cve": "CVE-2024-23672",
      "cwe": {
        "id": "CWE-459",
        "name": "Incomplete Cleanup"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Cleanup",
          "title": "CWE-459"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23672",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23672.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-36114",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-36114",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36114.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-36114"
    },
    {
      "cve": "CVE-2024-37891",
      "cwe": {
        "id": "CWE-669",
        "name": "Incorrect Resource Transfer Between Spheres"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incorrect Resource Transfer Between Spheres",
          "title": "CWE-669"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-37891",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-37891"
    },
    {
      "cve": "CVE-2024-38819",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38819",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38819"
    },
    {
      "cve": "CVE-2024-38820",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "other",
          "text": "Improper Handling of Case Sensitivity",
          "title": "CWE-178"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38820",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38820"
    },
    {
      "cve": "CVE-2024-38999",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
          "title": "CWE-1321"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38999",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 10.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38999"
    },
    {
      "cve": "CVE-2024-39338",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Server-Side Request Forgery (SSRF)",
          "title": "CWE-918"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-39338",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39338.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-39338"
    },
    {
      "cve": "CVE-2024-47554",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-47554",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-47554"
    },
    {
      "cve": "CVE-2024-47561",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-47561",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-47561"
    },
    {
      "cve": "CVE-2024-53382",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
          "title": "CWE-94"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-53382",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-53382.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-53382"
    },
    {
      "cve": "CVE-2024-57699",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-57699",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-57699.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-57699"
    },
    {
      "cve": "CVE-2025-21578",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-21578",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21578.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-21578"
    },
    {
      "cve": "CVE-2025-24813",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "other",
          "text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
          "title": "CWE-44"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Use of Incorrectly-Resolved Name or Reference",
          "title": "CWE-706"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24813",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24813.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-24813"
    },
    {
      "cve": "CVE-2025-24970",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24970",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24970.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-24970"
    },
    {
      "cve": "CVE-2025-25193",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-25193",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-25193.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-25193"
    },
    {
      "cve": "CVE-2025-26791",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-26791",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-26791.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-26791"
    },
    {
      "cve": "CVE-2025-30694",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30694",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30694.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30694"
    },
    {
      "cve": "CVE-2025-30701",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30701",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30701.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30701"
    },
    {
      "cve": "CVE-2025-30702",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30702",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30702.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30702"
    },
    {
      "cve": "CVE-2025-30733",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30733",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30733.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30733"
    },
    {
      "cve": "CVE-2025-30736",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30736",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30736.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30736"
    }
  ]
}

OPENSUSE-SU-2024:13832-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

tomcat-9.0.87-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: tomcat-9.0.87-1.1 on GA media

Description of the patch: These are all security issues fixed in the tomcat-9.0.87-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-13832

CVE-2024-23672

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 44 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 44 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64	—	Vendor Fix

Threats

Impact important

References

8 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2024-23672/	self
https://www.suse.com/security/cve/CVE-2024-24549/	self
https://www.suse.com/security/cve/CVE-2024-23672	external
https://bugzilla.suse.com/1221385	external
https://www.suse.com/security/cve/CVE-2024-24549	external
https://bugzilla.suse.com/1221386	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "tomcat-9.0.87-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the tomcat-9.0.87-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13832",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13832-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23672 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23672/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-24549 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-24549/"
      }
    ],
    "title": "tomcat-9.0.87-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13832-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-admin-webapps-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-admin-webapps-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-admin-webapps-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-docs-webapp-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-docs-webapp-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-docs-webapp-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-el-3_0-api-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-el-3_0-api-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-el-3_0-api-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-embed-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-embed-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-embed-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-javadoc-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-javadoc-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-javadoc-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-jsp-2_3-api-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsvc-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-jsvc-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-jsvc-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-lib-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-lib-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-lib-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-servlet-4_0-api-9.0.87-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-webapps-9.0.87-1.1.aarch64",
                "product": {
                  "name": "tomcat-webapps-9.0.87-1.1.aarch64",
                  "product_id": "tomcat-webapps-9.0.87-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-admin-webapps-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-admin-webapps-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-admin-webapps-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-docs-webapp-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-docs-webapp-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-docs-webapp-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-el-3_0-api-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-embed-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-embed-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-embed-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-javadoc-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-javadoc-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-javadoc-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsvc-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-jsvc-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-jsvc-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-lib-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-lib-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-lib-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-webapps-9.0.87-1.1.ppc64le",
                "product": {
                  "name": "tomcat-webapps-9.0.87-1.1.ppc64le",
                  "product_id": "tomcat-webapps-9.0.87-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-9.0.87-1.1.s390x",
                  "product_id": "tomcat-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-admin-webapps-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-admin-webapps-9.0.87-1.1.s390x",
                  "product_id": "tomcat-admin-webapps-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-docs-webapp-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-docs-webapp-9.0.87-1.1.s390x",
                  "product_id": "tomcat-docs-webapp-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-el-3_0-api-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-el-3_0-api-9.0.87-1.1.s390x",
                  "product_id": "tomcat-el-3_0-api-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-embed-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-embed-9.0.87-1.1.s390x",
                  "product_id": "tomcat-embed-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-javadoc-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-javadoc-9.0.87-1.1.s390x",
                  "product_id": "tomcat-javadoc-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
                  "product_id": "tomcat-jsp-2_3-api-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsvc-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-jsvc-9.0.87-1.1.s390x",
                  "product_id": "tomcat-jsvc-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-lib-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-lib-9.0.87-1.1.s390x",
                  "product_id": "tomcat-lib-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
                  "product_id": "tomcat-servlet-4_0-api-9.0.87-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-webapps-9.0.87-1.1.s390x",
                "product": {
                  "name": "tomcat-webapps-9.0.87-1.1.s390x",
                  "product_id": "tomcat-webapps-9.0.87-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-admin-webapps-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-admin-webapps-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-admin-webapps-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-docs-webapp-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-docs-webapp-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-docs-webapp-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-el-3_0-api-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-el-3_0-api-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-el-3_0-api-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-embed-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-embed-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-embed-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-javadoc-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-javadoc-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-javadoc-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-jsp-2_3-api-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsvc-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-jsvc-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-jsvc-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-lib-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-lib-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-lib-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-servlet-4_0-api-9.0.87-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-webapps-9.0.87-1.1.x86_64",
                "product": {
                  "name": "tomcat-webapps-9.0.87-1.1.x86_64",
                  "product_id": "tomcat-webapps-9.0.87-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-admin-webapps-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-admin-webapps-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-admin-webapps-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-admin-webapps-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-docs-webapp-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-docs-webapp-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-docs-webapp-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-docs-webapp-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-docs-webapp-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-docs-webapp-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-docs-webapp-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-docs-webapp-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-embed-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-embed-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-embed-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-embed-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-embed-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-embed-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-embed-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-embed-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-javadoc-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-javadoc-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-javadoc-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-javadoc-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-javadoc-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-javadoc-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-javadoc-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-javadoc-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsvc-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-jsvc-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsvc-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-jsvc-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsvc-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-jsvc-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsvc-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-jsvc-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-lib-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-lib-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-lib-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-lib-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.87-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64"
        },
        "product_reference": "tomcat-webapps-9.0.87-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.87-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le"
        },
        "product_reference": "tomcat-webapps-9.0.87-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.87-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x"
        },
        "product_reference": "tomcat-webapps-9.0.87-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.87-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
        },
        "product_reference": "tomcat-webapps-9.0.87-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-23672",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23672"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\n\nOlder, EOL versions may also be affected.\n\n\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23672",
          "url": "https://www.suse.com/security/cve/CVE-2024-23672"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221385 for CVE-2024-23672",
          "url": "https://bugzilla.suse.com/1221385"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-24549",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-24549"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.  Other, older, EOL versions may also be affected.\n\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
          "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-24549",
          "url": "https://www.suse.com/security/cve/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221386 for CVE-2024-24549",
          "url": "https://bugzilla.suse.com/1221386"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-admin-webapps-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-docs-webapp-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-el-3_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-embed-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-javadoc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsp-2_3-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-jsvc-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-lib-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-servlet-4_0-api-9.0.87-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.s390x",
            "openSUSE Tumbleweed:tomcat-webapps-9.0.87-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-24549"
    }
  ]
}

OPENSUSE-SU-2024:13833-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

tomcat10-10.1.20-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: tomcat10-10.1.20-1.1 on GA media

Description of the patch: These are all security issues fixed in the tomcat10-10.1.20-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-13833

CVE-2024-23672

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 44 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 44 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64	—	Vendor Fix

Threats

Impact important

References

8 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2024-23672/	self
https://www.suse.com/security/cve/CVE-2024-24549/	self
https://www.suse.com/security/cve/CVE-2024-23672	external
https://bugzilla.suse.com/1221385	external
https://www.suse.com/security/cve/CVE-2024-24549	external
https://bugzilla.suse.com/1221386	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "tomcat10-10.1.20-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the tomcat10-10.1.20-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13833",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13833-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23672 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23672/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-24549 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-24549/"
      }
    ],
    "title": "tomcat10-10.1.20-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13833-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat10-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-admin-webapps-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-admin-webapps-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-admin-webapps-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-doc-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-doc-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-doc-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-docs-webapp-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-docs-webapp-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-docs-webapp-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-el-5_0-api-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-embed-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-embed-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-embed-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsvc-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-jsvc-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-jsvc-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-lib-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-lib-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-lib-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-webapps-10.1.20-1.1.aarch64",
                "product": {
                  "name": "tomcat10-webapps-10.1.20-1.1.aarch64",
                  "product_id": "tomcat10-webapps-10.1.20-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat10-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-admin-webapps-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-doc-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-doc-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-doc-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-docs-webapp-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-el-5_0-api-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-embed-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-embed-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-embed-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsvc-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-jsvc-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-jsvc-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-lib-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-lib-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-lib-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-webapps-10.1.20-1.1.ppc64le",
                "product": {
                  "name": "tomcat10-webapps-10.1.20-1.1.ppc64le",
                  "product_id": "tomcat10-webapps-10.1.20-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat10-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-admin-webapps-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-admin-webapps-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-admin-webapps-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-doc-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-doc-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-doc-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-docs-webapp-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-docs-webapp-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-docs-webapp-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-el-5_0-api-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-el-5_0-api-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-el-5_0-api-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-embed-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-embed-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-embed-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-jsp-3_1-api-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsvc-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-jsvc-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-jsvc-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-lib-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-lib-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-lib-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-servlet-6_0-api-10.1.20-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-webapps-10.1.20-1.1.s390x",
                "product": {
                  "name": "tomcat10-webapps-10.1.20-1.1.s390x",
                  "product_id": "tomcat10-webapps-10.1.20-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat10-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-admin-webapps-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-admin-webapps-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-admin-webapps-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-doc-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-doc-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-doc-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-docs-webapp-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-docs-webapp-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-docs-webapp-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-el-5_0-api-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-embed-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-embed-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-embed-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-jsvc-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-jsvc-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-jsvc-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-lib-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-lib-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-lib-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat10-webapps-10.1.20-1.1.x86_64",
                "product": {
                  "name": "tomcat10-webapps-10.1.20-1.1.x86_64",
                  "product_id": "tomcat10-webapps-10.1.20-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-admin-webapps-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-admin-webapps-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-admin-webapps-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-admin-webapps-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-admin-webapps-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-admin-webapps-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-admin-webapps-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-doc-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-doc-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-doc-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-doc-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-doc-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-doc-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-doc-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-doc-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-docs-webapp-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-docs-webapp-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-docs-webapp-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-docs-webapp-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-docs-webapp-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-docs-webapp-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-docs-webapp-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-el-5_0-api-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-el-5_0-api-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-el-5_0-api-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-el-5_0-api-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-el-5_0-api-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-embed-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-embed-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-embed-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-embed-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-embed-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-embed-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-embed-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-embed-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsvc-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-jsvc-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsvc-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-jsvc-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsvc-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-jsvc-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-jsvc-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-jsvc-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-lib-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-lib-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-lib-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-lib-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-lib-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-lib-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-lib-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-lib-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-webapps-10.1.20-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64"
        },
        "product_reference": "tomcat10-webapps-10.1.20-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-webapps-10.1.20-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le"
        },
        "product_reference": "tomcat10-webapps-10.1.20-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-webapps-10.1.20-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x"
        },
        "product_reference": "tomcat10-webapps-10.1.20-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat10-webapps-10.1.20-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
        },
        "product_reference": "tomcat10-webapps-10.1.20-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-23672",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23672"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.\n\nOlder, EOL versions may also be affected.\n\n\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23672",
          "url": "https://www.suse.com/security/cve/CVE-2024-23672"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221385 for CVE-2024-23672",
          "url": "https://bugzilla.suse.com/1221385"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-24549",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-24549"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98.  Other, older, EOL versions may also be affected.\n\nUsers are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
          "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-24549",
          "url": "https://www.suse.com/security/cve/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221386 for CVE-2024-24549",
          "url": "https://bugzilla.suse.com/1221386"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-admin-webapps-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-doc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-docs-webapp-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-el-5_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-embed-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsp-3_1-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-jsvc-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-lib-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-servlet-6_0-api-10.1.20-1.1.x86_64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.aarch64",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.ppc64le",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.s390x",
            "openSUSE Tumbleweed:tomcat10-webapps-10.1.20-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-24549"
    }
  ]
}

RHSA-2024:1318

Vulnerability from csaf_redhat - Published: 2024-03-18 11:19 - Updated: 2026-04-30 13:14

Summary

Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.8 release and security update

Severity

Important

Notes

Topic: An update is now available for Red Hat JBoss Web Server 5.7.8 on Red Hat Enterprise Linux versions 7, 8, and 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.7.8 serves as a replacement for Red Hat JBoss Web Server 5.7.7. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes linked to in the References section. Security Fix(es): * openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678) * tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589) * tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2023-5678

A flaw was found in OpenSSL, which caused the generation or checking of long X9.42 DH keys or parameters to be much slower than expected. This issue could lead to a denial of service.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-325 - Missing Cryptographic Step

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Vendor Fix fix Workaround

Known not affected 35 products

Product	Version	Remediation
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Workaround

Threats

Impact Low

CVE-2023-46589

An improper Input validation flaw was found in Apache Tomcat due to incorrect parsing of HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests, leading to the possibility of request smuggling when behind a reverse proxy.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 35 products

Product	Version	Remediation
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround

Known not affected 9 products

Product	Version	Remediation
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Workaround

Threats

Impact Important

CVE-2024-24549

A vulnerability was found in the Tomcat package due to its handling of HTTP/2 requests. Specifically, when an HTTP/2 request surpasses the predetermined limits for headers configured within the server, the associated HTTP/2 stream isn't reset immediately. Instead, the reset action occurs only after all the headers within the request have been processed. This lapse in resetting the stream exposes the system to potential risks, as it allows malicious actors to exploit the delay in stream reset to carry out various attacks, such as header manipulation or resource exhaustion.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 44 products

Product	Version	Remediation
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

References

27 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1318	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/documentation/en-us/red…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2248616	external
https://bugzilla.redhat.com/show_bug.cgi?id=2252050	external
https://bugzilla.redhat.com/show_bug.cgi?id=2269607	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-5678	self
https://bugzilla.redhat.com/show_bug.cgi?id=2248616	external
https://www.cve.org/CVERecord?id=CVE-2023-5678	external
https://nvd.nist.gov/vuln/detail/CVE-2023-5678	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://www.openssl.org/news/secadv/20231106.txt	external
https://access.redhat.com/security/cve/CVE-2023-46589	self
https://bugzilla.redhat.com/show_bug.cgi?id=2252050	external
https://www.cve.org/CVERecord?id=CVE-2023-46589	external
https://nvd.nist.gov/vuln/detail/CVE-2023-46589	external
http://www.openwall.com/lists/oss-security/2023/11/28/2	external
https://lists.apache.org/thread/0rqq6ktozqc42ro8h…	external
https://access.redhat.com/security/cve/CVE-2024-24549	self
https://bugzilla.redhat.com/show_bug.cgi?id=2269607	external
https://www.cve.org/CVERecord?id=CVE-2024-24549	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24549	external
https://lists.apache.org/thread/4c50rmomhbbsdgfjs…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for Red Hat JBoss Web Server 5.7.8 on Red Hat Enterprise Linux versions 7, 8, and 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 5.7.8 serves as a replacement for Red Hat JBoss Web Server 5.7.7. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes linked to in the References section.\n\nSecurity Fix(es):\n\n* openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678)\n* tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589)\n* tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1318",
        "url": "https://access.redhat.com/errata/RHSA-2024:1318"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_web_server/5.7/html/red_hat_jboss_web_server_5.7_service_pack_8_release_notes",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_web_server/5.7/html/red_hat_jboss_web_server_5.7_service_pack_8_release_notes"
      },
      {
        "category": "external",
        "summary": "2248616",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2248616"
      },
      {
        "category": "external",
        "summary": "2252050",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252050"
      },
      {
        "category": "external",
        "summary": "2269607",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269607"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1318.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.8 release and security update",
    "tracking": {
      "current_release_date": "2026-04-30T13:14:51+00:00",
      "generator": {
        "date": "2026-04-30T13:14:51+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2024:1318",
      "initial_release_date": "2024-03-18T11:19:02+00:00",
      "revision_history": [
        {
          "date": "2024-03-18T11:19:02+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-19T15:41:03+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-30T13:14:51+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
                  "product_id": "7Server-JWS-5.7",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.7::el7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat JBoss Web Server 5.7 for RHEL 8",
                "product": {
                  "name": "Red Hat JBoss Web Server 5.7 for RHEL 8",
                  "product_id": "8Base-JWS-5.7",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.7::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat JBoss Web Server 5.7 for RHEL 9",
                "product": {
                  "name": "Red Hat JBoss Web Server 5.7 for RHEL 9",
                  "product_id": "9Base-JWS-5.7",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.7::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Web Server"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el7jws?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el7jws?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el8jws?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el8jws?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el9jws?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el9jws?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el7jws?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
                  "product_id": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native-debuginfo@1.2.31-17.redhat_17.el7jws?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el8jws?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
                  "product_id": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native-debuginfo@1.2.31-17.redhat_17.el8jws?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
                  "product_id": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.31-17.redhat_17.el9jws?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
                "product": {
                  "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
                  "product_id": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-native-debuginfo@1.2.31-17.redhat_17.el9jws?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-admin-webapps@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-docs-webapp@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-el-3.0-api@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-java-jdk11@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-java-jdk8@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-javadoc@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-jsp-2.3-api@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-lib@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-selinux@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-servlet-4.0-api@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                "product": {
                  "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_id": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-webapps@9.0.62-41.redhat_00020.1.el7jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-admin-webapps@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-docs-webapp@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-el-3.0-api@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-javadoc@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-jsp-2.3-api@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-lib@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-selinux@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-servlet-4.0-api@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                "product": {
                  "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_id": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-webapps@9.0.62-41.redhat_00020.1.el8jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-admin-webapps@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-docs-webapp@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-el-3.0-api@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-javadoc@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-jsp-2.3-api@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-lib@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-selinux@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-servlet-4.0-api@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                "product": {
                  "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_id": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jws5-tomcat-webapps@9.0.62-41.redhat_00020.1.el9jws?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 7 Server",
          "product_id": "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch"
        },
        "product_reference": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
        "relates_to_product_reference": "7Server-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 8",
          "product_id": "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch"
        },
        "product_reference": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
        "relates_to_product_reference": "8Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src"
        },
        "product_reference": "jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64 as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64"
        },
        "product_reference": "jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch as a component of Red Hat JBoss Web Server 5.7 for RHEL 9",
          "product_id": "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        },
        "product_reference": "jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
        "relates_to_product_reference": "9Base-JWS-5.7"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5678",
      "cwe": {
        "id": "CWE-325",
        "name": "Missing Cryptographic Step"
      },
      "discovery_date": "2023-11-07T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2248616"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL, which caused the generation or checking of long X9.42 DH keys or parameters to be much slower than expected. This issue could lead to a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in OpenSSL is categorized as a low severity issue primarily because it requires specific conditions to exploit and doesn\u0027t directly result in a full Denial of Service (DoS). While the excessive time spent in DH key generation or verification could potentially cause delays, the impact is mitigated by the fact that it requires untrusted sources supplying large Q parameter values. Additionally, the OpenSSL SSL/TLS implementation remains unaffected, limiting the scope of potential attacks. Moreover, there are inherent limits on key length, which further restrict the potential for exploitation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64"
        ],
        "known_not_affected": [
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "RHBZ#2248616",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2248616"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-5678",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-5678",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20231106.txt",
          "url": "https://www.openssl.org/news/secadv/20231106.txt"
        }
      ],
      "release_date": "2023-10-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:19:02+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1318"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow"
    },
    {
      "cve": "CVE-2023-46589",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2023-11-29T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2252050"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper Input validation flaw was found in Apache Tomcat due to incorrect parsing of HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests, leading to the possibility of request smuggling when behind a reverse proxy.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "tomcat: HTTP request smuggling via malformed trailer headers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in Apache Tomcat is of significant importance due to its potential to exploit HTTP request smuggling, presenting a security risk for web applications utilizing Tomcat. The flaw arises from Tomcat\u0027s improper parsing of HTTP trailer headers, where a specifically crafted header exceeding the size limit could cause Tomcat to treat a single request as multiple ones. This opens the door for attackers to manipulate requests and potentially conduct various malicious activities, such as unauthorized access, data exposure, or other exploits, particularly when Tomcat is deployed behind a reverse proxy. \n\nThe pki-servlet-engine package has been obsoleted by the Tomcat package. Therefore, this issue will be fixed in the Tomcat package rather than the pki-serlvet-engine package. Please follow the RHEL Tomcat trackers instead for the updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        ],
        "known_not_affected": [
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "RHBZ#2252050",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252050"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-46589",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46589",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2023/11/28/2",
          "url": "http://www.openwall.com/lists/oss-security/2023/11/28/2"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr",
          "url": "https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr"
        }
      ],
      "release_date": "2023-11-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:19:02+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1318"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "tomcat: HTTP request smuggling via malformed trailer headers"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-03-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2269607"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the Tomcat package due to its handling of HTTP/2 requests. Specifically, when an HTTP/2 request surpasses the predetermined limits for headers configured within the server, the associated HTTP/2 stream isn\u0027t reset immediately. Instead, the reset action occurs only after all the headers within the request have been processed. This lapse in resetting the stream exposes the system to potential risks, as it allows malicious actors to exploit the delay in stream reset to carry out various attacks, such as header manipulation or resource exhaustion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Tomcat: HTTP/2 header handling DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability presents an Important severity issue due to its potential to facilitate various forms of attack, particularly in the context of HTTP/2 protocol. By delaying the reset of HTTP/2 streams until after processing all headers, malicious actors can exploit this window to execute header manipulation attacks, leading to potential data exfiltration, injection of malicious content, or server resource exhaustion. Furthermore, the delayed reset prolongs the exposure time of vulnerable systems, increasing the likelihood of successful exploitation.\n\nIn addition, Red Hat Certificate System 10.0 and Red Hat Enterprise Linux 8\u0027s Identity Management, are using a vulnerable version of Tomcat that is bundled into the pki-servlet-engine component. However, HTTP/2 is not enabled in such a configuration, and it is not possible to trigger the flaw in a supported setup. See https://access.redhat.com/security/cve/CVE-2020-13934  for context.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
          "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
          "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
          "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
          "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
          "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
          "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
          "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "RHBZ#2269607",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269607"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-24549",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg",
          "url": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg"
        }
      ],
      "release_date": "2024-03-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:19:02+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1318"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk11-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-java-jdk8-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.src",
            "7Server-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el7jws.x86_64",
            "7Server-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "7Server-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el7jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.src",
            "8Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el8jws.x86_64",
            "8Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "8Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el8jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-0:9.0.62-41.redhat_00020.1.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-admin-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-docs-webapp-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-el-3.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-javadoc-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-jsp-2.3-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-lib-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.src",
            "9Base-JWS-5.7:jws5-tomcat-native-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-native-debuginfo-0:1.2.31-17.redhat_17.el9jws.x86_64",
            "9Base-JWS-5.7:jws5-tomcat-selinux-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-servlet-4.0-api-0:9.0.62-41.redhat_00020.1.el9jws.noarch",
            "9Base-JWS-5.7:jws5-tomcat-webapps-0:9.0.62-41.redhat_00020.1.el9jws.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Tomcat: HTTP/2 header handling DoS"
    }
  ]
}

RHSA-2024:1319

Vulnerability from csaf_redhat - Published: 2024-03-18 11:13 - Updated: 2026-04-30 13:14

Summary

Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.8 release and security update

Severity

Important

Notes

Topic: Red Hat JBoss Web Server 5.7.8 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9, and Windows Server. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.7.8 serves as a replacement for Red Hat JBoss Web Server 5.7.7. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes linked to in the References section. Security Fix(es): * tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589) * tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549) * openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-5678

A flaw was found in OpenSSL, which caused the generation or checking of long X9.42 DH keys or parameters to be much slower than expected. This issue could lead to a denial of service.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-325 - Missing Cryptographic Step

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
JWS 5.7.8 Red Hat / Red Hat JBoss Web Server	`cpe:/a:redhat:jboss_enterprise_web_server:5.7`	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2023-46589

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
JWS 5.7.8 Red Hat / Red Hat JBoss Web Server	`cpe:/a:redhat:jboss_enterprise_web_server:5.7`	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
JWS 5.7.8 Red Hat / Red Hat JBoss Web Server	`cpe:/a:redhat:jboss_enterprise_web_server:5.7`	—	Vendor Fix fix Workaround

Threats

Impact Important

References

28 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1319	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/jbossnetwork/restricted…	external
https://access.redhat.com/documentation/en-us/red…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2248616	external
https://bugzilla.redhat.com/show_bug.cgi?id=2252050	external
https://bugzilla.redhat.com/show_bug.cgi?id=2269607	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-5678	self
https://bugzilla.redhat.com/show_bug.cgi?id=2248616	external
https://www.cve.org/CVERecord?id=CVE-2023-5678	external
https://nvd.nist.gov/vuln/detail/CVE-2023-5678	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://git.openssl.org/gitweb/?p=openssl.git;a=c…	external
https://www.openssl.org/news/secadv/20231106.txt	external
https://access.redhat.com/security/cve/CVE-2023-46589	self
https://bugzilla.redhat.com/show_bug.cgi?id=2252050	external
https://www.cve.org/CVERecord?id=CVE-2023-46589	external
https://nvd.nist.gov/vuln/detail/CVE-2023-46589	external
http://www.openwall.com/lists/oss-security/2023/11/28/2	external
https://lists.apache.org/thread/0rqq6ktozqc42ro8h…	external
https://access.redhat.com/security/cve/CVE-2024-24549	self
https://bugzilla.redhat.com/show_bug.cgi?id=2269607	external
https://www.cve.org/CVERecord?id=CVE-2024-24549	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24549	external
https://lists.apache.org/thread/4c50rmomhbbsdgfjs…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat JBoss Web Server 5.7.8 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9, and Windows Server.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 5.7.8 serves as a replacement for Red Hat JBoss Web Server 5.7.7. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes linked to in the References section.\n\nSecurity Fix(es):\n\n* tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589)\n\n* tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549)\n\n* openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1319",
        "url": "https://access.redhat.com/errata/RHSA-2024:1319"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=5.7",
        "url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=5.7"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_web_server/5.7/html/red_hat_jboss_web_server_5.7_service_pack_8_release_notes",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_web_server/5.7/html/red_hat_jboss_web_server_5.7_service_pack_8_release_notes"
      },
      {
        "category": "external",
        "summary": "2248616",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2248616"
      },
      {
        "category": "external",
        "summary": "2252050",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252050"
      },
      {
        "category": "external",
        "summary": "2269607",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269607"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1319.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.8 release and security update",
    "tracking": {
      "current_release_date": "2026-04-30T13:14:52+00:00",
      "generator": {
        "date": "2026-04-30T13:14:52+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2024:1319",
      "initial_release_date": "2024-03-18T11:13:46+00:00",
      "revision_history": [
        {
          "date": "2024-03-18T11:13:46+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-19T15:40:20+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-30T13:14:52+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "JWS 5.7.8",
                "product": {
                  "name": "JWS 5.7.8",
                  "product_id": "JWS 5.7.8",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Web Server"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5678",
      "cwe": {
        "id": "CWE-325",
        "name": "Missing Cryptographic Step"
      },
      "discovery_date": "2023-11-07T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2248616"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL, which caused the generation or checking of long X9.42 DH keys or parameters to be much slower than expected. This issue could lead to a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in OpenSSL is categorized as a low severity issue primarily because it requires specific conditions to exploit and doesn\u0027t directly result in a full Denial of Service (DoS). While the excessive time spent in DH key generation or verification could potentially cause delays, the impact is mitigated by the fact that it requires untrusted sources supplying large Q parameter values. Additionally, the OpenSSL SSL/TLS implementation remains unaffected, limiting the scope of potential attacks. Moreover, there are inherent limits on key length, which further restrict the potential for exploitation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "JWS 5.7.8"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "RHBZ#2248616",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2248616"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-5678",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-5678",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5678"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017"
        },
        {
          "category": "external",
          "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6",
          "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20231106.txt",
          "url": "https://www.openssl.org/news/secadv/20231106.txt"
        }
      ],
      "release_date": "2023-10-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:13:46+00:00",
          "details": "Before applying the update, back up your existing Red Hat JBoss Web Server installation, including all applications and configuration files.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
          "product_ids": [
            "JWS 5.7.8"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1319"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "JWS 5.7.8"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "JWS 5.7.8"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow"
    },
    {
      "cve": "CVE-2023-46589",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2023-11-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2252050"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper Input validation flaw was found in Apache Tomcat due to incorrect parsing of HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests, leading to the possibility of request smuggling when behind a reverse proxy.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "tomcat: HTTP request smuggling via malformed trailer headers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in Apache Tomcat is of significant importance due to its potential to exploit HTTP request smuggling, presenting a security risk for web applications utilizing Tomcat. The flaw arises from Tomcat\u0027s improper parsing of HTTP trailer headers, where a specifically crafted header exceeding the size limit could cause Tomcat to treat a single request as multiple ones. This opens the door for attackers to manipulate requests and potentially conduct various malicious activities, such as unauthorized access, data exposure, or other exploits, particularly when Tomcat is deployed behind a reverse proxy. \n\nThe pki-servlet-engine package has been obsoleted by the Tomcat package. Therefore, this issue will be fixed in the Tomcat package rather than the pki-serlvet-engine package. Please follow the RHEL Tomcat trackers instead for the updates.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "JWS 5.7.8"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "RHBZ#2252050",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252050"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-46589",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-46589",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46589"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2023/11/28/2",
          "url": "http://www.openwall.com/lists/oss-security/2023/11/28/2"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr",
          "url": "https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr"
        }
      ],
      "release_date": "2023-11-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:13:46+00:00",
          "details": "Before applying the update, back up your existing Red Hat JBoss Web Server installation, including all applications and configuration files.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
          "product_ids": [
            "JWS 5.7.8"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1319"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "JWS 5.7.8"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "JWS 5.7.8"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "tomcat: HTTP request smuggling via malformed trailer headers"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-03-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2269607"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the Tomcat package due to its handling of HTTP/2 requests. Specifically, when an HTTP/2 request surpasses the predetermined limits for headers configured within the server, the associated HTTP/2 stream isn\u0027t reset immediately. Instead, the reset action occurs only after all the headers within the request have been processed. This lapse in resetting the stream exposes the system to potential risks, as it allows malicious actors to exploit the delay in stream reset to carry out various attacks, such as header manipulation or resource exhaustion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Tomcat: HTTP/2 header handling DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability presents an Important severity issue due to its potential to facilitate various forms of attack, particularly in the context of HTTP/2 protocol. By delaying the reset of HTTP/2 streams until after processing all headers, malicious actors can exploit this window to execute header manipulation attacks, leading to potential data exfiltration, injection of malicious content, or server resource exhaustion. Furthermore, the delayed reset prolongs the exposure time of vulnerable systems, increasing the likelihood of successful exploitation.\n\nIn addition, Red Hat Certificate System 10.0 and Red Hat Enterprise Linux 8\u0027s Identity Management, are using a vulnerable version of Tomcat that is bundled into the pki-servlet-engine component. However, HTTP/2 is not enabled in such a configuration, and it is not possible to trigger the flaw in a supported setup. See https://access.redhat.com/security/cve/CVE-2020-13934  for context.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "JWS 5.7.8"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "RHBZ#2269607",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269607"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-24549",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24549"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg",
          "url": "https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg"
        }
      ],
      "release_date": "2024-03-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-18T11:13:46+00:00",
          "details": "Before applying the update, back up your existing Red Hat JBoss Web Server installation, including all applications and configuration files.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
          "product_ids": [
            "JWS 5.7.8"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1319"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "JWS 5.7.8"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "JWS 5.7.8"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Tomcat: HTTP/2 header handling DoS"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Product	Identifier	Version
financial_services_cash_flow_engine oracle	`cpe:2.3:a:oracle:financial_services_cash_flow_engine:8.1.2.0.0:::::::*`	—
financial_services_model_management_and_governance oracle	`cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.3:::::::*`	—
financial_services_model_management_and_governance oracle	`cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.4:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.6:::::::*`	—
financial_services_compliance_studio oracle	`cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.5:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6:::::::*`	—
financial_services_lending_and_leasing oracle	`cpe:2.3:a:oracle:financial_services_lending_and_leasing::::::::`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.7.1:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_pricing_services___2.9.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.1:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing::::::::`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.0.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_security___5.1.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.1.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0:::::::*`	—
financial_services_model_management_and_governance oracle	`cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.5:::::::*`	—
financial_services_model_management_and_governance oracle	`cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.6:::::::*`	—
financial_services_basel_regulatory_capital_basic oracle	`cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.7.3:::::::*`	—
financial_services_basel_regulatory_capital_basic oracle	`cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.8.3:::::::*`	—
financial_services_basel_regulatory_capital_internal_ratings_based_approach oracle	`cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.7.3:::::::*`	—
financial_services_basel_regulatory_capital_internal_ratings_based_approach oracle	`cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.8.3:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.7:::::::*`	—
financial_services_compliance_studio oracle	`cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.6:::::::*`	—
financial_services_compliance_studio oracle	`cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.7:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2.8:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1.18:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6.4:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.7.3:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0.0.0:::::::*`	—
financial_services_revenue_management_and_billing oracle	`cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.1.0.0.0:::::::*`	—
financial_services_trade-based_anti_money_laundering_enterprise_edition oracle	`cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8.0:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:::::::*`	—
financial_services_analytical_applications_infrastructure oracle	`cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8.1:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.1:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.4:::::::*`	—
financial_services_behavior_detection_platform oracle	`cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.5:::::::*`	—
financial_services_compliance_studio oracle	`cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.4:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.4:::::::*`	—
financial_services_enterprise_case_management oracle	`cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.5:::::::*`	—
financial_services_trade-based_anti_money_laundering_enterprise_edition oracle	`cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8:::::::*`	—

Action not permitted

CVE-2024-24549 (GCVE-0-2024-24549)

Tags

Sightings

Nomenclature