Vulnerability-Lookup

CVE-2024-26308 (GCVE-0-2024-26308)

Vulnerability from cvelistv5 – Published: 2024-02-19 08:31 – Updated: 2025-03-27 19:10

Title

Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file

Summary

Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue.

Severity

No CVSS data available.

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Assigner

apache

References

3 references

URL	Tags
https://lists.apache.org/thread/ch5yo2d21p7vlqrhl…	vendor-advisory
http://www.openwall.com/lists/oss-security/2024/02/19/2
https://security.netapp.com/advisory/ntap-2024030…

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache Commons Compress	Affected: 1.21 , < 1.26.0 (semver)

Credits

Yakov Shafranovich, Amazon Web Services

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26308",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-22T17:49:36.910764Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-27T19:10:43.565Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:07:19.215Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/02/19/2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240307-0009/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://repo.maven.apache.org/maven2/",
          "defaultStatus": "unaffected",
          "packageName": "org.apache.commons:commons-compress",
          "product": "Apache Commons Compress",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThan": "1.26.0",
              "status": "affected",
              "version": "1.21",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "Yakov Shafranovich, Amazon Web Services"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.\u003cp\u003eThis issue affects Apache Commons Compress: from 1.21 before 1.26.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 1.26, which fixes the issue.\u003c/p\u003e"
            }
          ],
          "value": "Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26.\n\nUsers are recommended to upgrade to version 1.26, which fixes the issue."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "text": "moderate"
            },
            "type": "Textual description of severity"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-03-07T17:06:31.944Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2024/02/19/2"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240307-0009/"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2024-26308",
    "datePublished": "2024-02-19T08:31:50.192Z",
    "dateReserved": "2024-02-17T22:08:44.423Z",
    "dateUpdated": "2025-03-27T19:10:43.565Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-26308",
      "date": "2026-05-29",
      "epss": "0.00403",
      "percentile": "0.61165"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-26308\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2024-02-19T09:15:38.277\",\"lastModified\":\"2025-03-27T20:15:24.547\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26.\\n\\nUsers are recommended to upgrade to version 1.26, which fixes the issue.\"},{\"lang\":\"es\",\"value\":\"Asignaci\u00f3n de recursos sin l\u00edmites o vulnerabilidad de limitaci\u00f3n en Apache Commons Compress. Este problema afecta a Apache Commons Compress: desde 1.21 antes de 1.26. Se recomienda a los usuarios actualizar a la versi\u00f3n 1.26, que soluciona el problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:commons_compress:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.21\",\"versionEndExcluding\":\"1.26.0\",\"matchCriteriaId\":\"D8C5F6D4-AAD9-4029-B819-01DB81C18DA1\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/19/2\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240307-0009/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/19/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240307-0009/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/19/2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240307-0009/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T00:07:19.215Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-26308\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-22T17:49:36.910764Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-05T15:20:40.685Z\"}}], \"cna\": {\"title\": \"Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"value\": \"Yakov Shafranovich, Amazon Web Services\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"moderate\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache Commons Compress\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.21\", \"lessThan\": \"1.26.0\", \"versionType\": \"semver\"}], \"packageName\": \"org.apache.commons:commons-compress\", \"collectionURL\": \"https://repo.maven.apache.org/maven2/\", \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/19/2\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240307-0009/\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26.\\n\\nUsers are recommended to upgrade to version 1.26, which fixes the issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.\u003cp\u003eThis issue affects Apache Commons Compress: from 1.21 before 1.26.\u003c/p\u003e\u003cp\u003eUsers are recommended to upgrade to version 1.26, which fixes the issue.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770 Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2024-03-07T17:06:31.944Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-26308\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-27T19:10:43.565Z\", \"dateReserved\": \"2024-02-17T22:08:44.423Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2024-02-19T08:31:50.192Z\", \"assignerShortName\": \"apache\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

WID-SEC-W-2024-0868

Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2024-04-16 22:00

Summary

Oracle Construction and Engineering: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Construction and Engineering ist eine Sammlung von Werkzeugen zur Unterstützung von Bau- und Ingenieurbüros. Sie umfasst u. a. Projektmanagement-Lösungen zur Verwaltung von Projekte, zur Schaffung von Transparenz, zur Zusammenarbeit und zur Verwaltung von Änderungen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Construction and Engineering ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2023-50386

In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality" und "Availability", sowie "LOW" für "Integrity" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "MITTEL" für die Schadenshöhe.

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

CVE-2023-5072

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

CVE-2023-52428

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

CVE-2024-21095

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

CVE-2024-22243

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

CVE-2024-26308

Affected products

Last affected 12 products

Product	Identifier	Version	Remediation
Oracle Construction and Engineering <=23.12.2 Oracle / Construction and Engineering		<=23.12.2
Oracle Construction and Engineering <=21.12.17 Oracle / Construction and Engineering		<=21.12.17
Oracle Construction and Engineering <=22.12.12 Oracle / Construction and Engineering		<=22.12.12
Oracle Construction and Engineering <=20.12.16 Oracle / Construction and Engineering		<=20.12.16
Oracle Construction and Engineering <=21.12.18 Oracle / Construction and Engineering		<=21.12.18
Oracle Construction and Engineering <=19.12.22 Oracle / Construction and Engineering		<=19.12.22
Oracle Construction and Engineering <=20.12.21 Oracle / Construction and Engineering		<=20.12.21
Oracle Construction and Engineering <=23.12.3 Oracle / Construction and Engineering		<=23.12.3
Oracle Construction and Engineering <=19.12.16 Oracle / Construction and Engineering		<=19.12.16
Oracle Construction and Engineering <=21.12.11 Oracle / Construction and Engineering		<=21.12.11
Oracle Construction and Engineering <=20.12.13 Oracle / Construction and Engineering		<=20.12.13
Oracle Construction and Engineering <=19.12.18 Oracle / Construction and Engineering		<=19.12.18

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2024…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Construction and Engineering ist eine Sammlung von Werkzeugen zur Unterst\u00fctzung von Bau- und Ingenieurb\u00fcros. Sie umfasst u. a. Projektmanagement-L\u00f6sungen zur Verwaltung von Projekte, zur Schaffung von Transparenz, zur Zusammenarbeit  und zur Verwaltung von \u00c4nderungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Construction and Engineering ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0868 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0868.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0868 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0868"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Construction and Engineering vom 2024-04-16",
        "url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixPVA"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Construction and Engineering: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-04-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:07:39.814+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0868",
      "initial_release_date": "2024-04-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=19.12.16",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=19.12.16",
                  "product_id": "T027345"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=20.12.16",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=20.12.16",
                  "product_id": "T027346"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=19.12.22",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=19.12.22",
                  "product_id": "T032095"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=21.12.17",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=21.12.17",
                  "product_id": "T032097"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=20.12.21",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=20.12.21",
                  "product_id": "T034151"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=21.12.18",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=21.12.18",
                  "product_id": "T034152"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=22.12.12",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=22.12.12",
                  "product_id": "T034153"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.12.2",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=23.12.2",
                  "product_id": "T034154"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=19.12.18",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=19.12.18",
                  "product_id": "T034155"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=20.12.13",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=20.12.13",
                  "product_id": "T034156"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=21.12.11",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=21.12.11",
                  "product_id": "T034157"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.12.3",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c=23.12.3",
                  "product_id": "T034158"
                }
              }
            ],
            "category": "product_name",
            "name": "Construction and Engineering"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50386",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-50386"
    },
    {
      "cve": "CVE-2023-5072",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5072"
    },
    {
      "cve": "CVE-2023-52428",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-52428"
    },
    {
      "cve": "CVE-2024-21095",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21095"
    },
    {
      "cve": "CVE-2024-22243",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-22243"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\" und \"Availability\", sowie \"LOW\" f\u00fcr \"Integrity\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T034154",
          "T032097",
          "T034153",
          "T027346",
          "T034152",
          "T032095",
          "T034151",
          "T034158",
          "T027345",
          "T034157",
          "T034156",
          "T034155"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

WID-SEC-W-2024-0869

Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2025-09-10 22:00

Summary

Oracle Communications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Windows

CVE-2022-40152

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2022-40896

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2022-45688

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-2283

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-31122

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-33201

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-34053

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-34055

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-4016

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-41056

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-43496

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-44487

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-45142

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-4641

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-46589

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-47100

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-4863

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-48795

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-49083

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-5072

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-51074

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-51257

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-51775

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-5341

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-5363

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2023-6507

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-1635

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-21626

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-22201

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-22233

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-22257

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-22259

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-25062

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-26130

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

CVE-2024-26308

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 23.2.0 Oracle / Communications	`cpe:/a:oracle:communications:23.2.0`	23.2.0
Oracle Communications 14.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:14.0.0.0.0`	14.0.0.0.0
Oracle Communications 23.3.0 Oracle / Communications	`cpe:/a:oracle:communications:23.3.0`	23.3.0
Oracle Communications 23.3.2 Oracle / Communications	`cpe:/a:oracle:communications:23.3.2`	23.3.2
Oracle Communications 9.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:9.0.0.0`	9.0.0.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Oracle Communications 24.1.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0.0.0`	24.1.0.0.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 23.2.2 Oracle / Communications	`cpe:/a:oracle:communications:23.2.2`	23.2.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 23.3.1 Oracle / Communications	`cpe:/a:oracle:communications:23.3.1`	23.3.1
Oracle Communications 9.1.1.7.0 Oracle / Communications	`cpe:/a:oracle:communications:9.1.1.7.0`	9.1.1.7.0
Oracle Communications 5.0 Oracle / Communications	`cpe:/a:oracle:communications:5.0`	5
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 22.4.0 Oracle / Communications	`cpe:/a:oracle:communications:22.4.0`	22.4.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 3 products

Product	Identifier	Version	Remediation
Oracle Communications <=9.0.2 Oracle / Communications		<=9.0.2
Oracle Communications <=7.2.1.0.0 Oracle / Communications		<=7.2.1.0.0
Oracle Communications <=23.4.2 Oracle / Communications		<=23.4.2

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2024…	external
https://access.redhat.com/errata/RHSA-2024:1878	external
https://security.gentoo.org/glsa/202405-01	external
https://access.redhat.com/errata/RHSA-2024:7987	external
https://securitydocs.business.xerox.com/wp-conten…	external
https://linux.oracle.com/errata/ELSA-2025-15608.html	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Communications umfasst branchenspezifische L\u00f6sungen f\u00fcr die Telekommunikationsbranche.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0869 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0869.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0869 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0869"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Communications vom 2024-04-16",
        "url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixCGBU"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1878 vom 2024-04-18",
        "url": "https://access.redhat.com/errata/RHSA-2024:1878"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202405-01 vom 2024-05-04",
        "url": "https://security.gentoo.org/glsa/202405-01"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7987 vom 2024-10-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:7987"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX24-017 vom 2024-11-21",
        "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2024/11/Xerox-Security-Bulletin-XRX24-017-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-15608 vom 2025-09-11",
        "url": "https://linux.oracle.com/errata/ELSA-2025-15608.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Communications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-09-10T22:00:00.000+00:00",
      "generator": {
        "date": "2025-09-11T08:26:12.211+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2024-0869",
      "initial_release_date": "2024-04-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-04-17T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-05-05T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2024-10-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-21T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2025-09-10T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5",
                "product": {
                  "name": "Oracle Communications 5.0",
                  "product_id": "T021645",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:5.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "22.4.0",
                "product": {
                  "name": "Oracle Communications 22.4.0",
                  "product_id": "T024981",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:22.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.1.0",
                "product": {
                  "name": "Oracle Communications 23.1.0",
                  "product_id": "T027326",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.2.0",
                "product": {
                  "name": "Oracle Communications 23.2.0",
                  "product_id": "T028682",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.2.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.1",
                "product": {
                  "name": "Oracle Communications 5.1",
                  "product_id": "T028684",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:5.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.2.2",
                "product": {
                  "name": "Oracle Communications 23.2.2",
                  "product_id": "T030583",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.2.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.3.0",
                "product": {
                  "name": "Oracle Communications 23.3.0",
                  "product_id": "T030586",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.0.0.0",
                "product": {
                  "name": "Oracle Communications 9.0.0.0",
                  "product_id": "T030589",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:9.0.0.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.2.1.0.0",
                "product": {
                  "name": "Oracle Communications \u003c=7.2.1.0.0",
                  "product_id": "T030593"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.2.1.0.0",
                "product": {
                  "name": "Oracle Communications \u003c=7.2.1.0.0",
                  "product_id": "T030593-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=9.0.2",
                "product": {
                  "name": "Oracle Communications \u003c=9.0.2",
                  "product_id": "T030595"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=9.0.2",
                "product": {
                  "name": "Oracle Communications \u003c=9.0.2",
                  "product_id": "T030595-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "23.3.1",
                "product": {
                  "name": "Oracle Communications 23.3.1",
                  "product_id": "T032088",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.3.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.4.0",
                "product": {
                  "name": "Oracle Communications 23.4.0",
                  "product_id": "T032091",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.4.1",
                "product": {
                  "name": "Oracle Communications 23.4.1",
                  "product_id": "T034143",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.4.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.2",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.2",
                  "product_id": "T034144"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.2",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.2",
                  "product_id": "T034144-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "24.1.0",
                "product": {
                  "name": "Oracle Communications 24.1.0",
                  "product_id": "T034145",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:24.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.2",
                "product": {
                  "name": "Oracle Communications 5.2",
                  "product_id": "T034146",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:5.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "24.1.0.0.0",
                "product": {
                  "name": "Oracle Communications 24.1.0.0.0",
                  "product_id": "T034147",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:24.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.3.2",
                "product": {
                  "name": "Oracle Communications 23.3.2",
                  "product_id": "T034148",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.3.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.0.0.0.0",
                "product": {
                  "name": "Oracle Communications 14.0.0.0.0",
                  "product_id": "T034149",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:14.0.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.1.1.7.0",
                "product": {
                  "name": "Oracle Communications 9.1.1.7.0",
                  "product_id": "T034150",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:9.1.1.7.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Communications"
          },
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "v9",
                "product": {
                  "name": "Xerox FreeFlow Print Server v9",
                  "product_id": "T015632",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-40152",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-40896",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-40896"
    },
    {
      "cve": "CVE-2022-45688",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-45688"
    },
    {
      "cve": "CVE-2023-2283",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-2283"
    },
    {
      "cve": "CVE-2023-31122",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-31122"
    },
    {
      "cve": "CVE-2023-33201",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-33201"
    },
    {
      "cve": "CVE-2023-34053",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-34053"
    },
    {
      "cve": "CVE-2023-34055",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-34055"
    },
    {
      "cve": "CVE-2023-4016",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-4016"
    },
    {
      "cve": "CVE-2023-41056",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-41056"
    },
    {
      "cve": "CVE-2023-43496",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-43496"
    },
    {
      "cve": "CVE-2023-44487",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-45142",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-45142"
    },
    {
      "cve": "CVE-2023-4641",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-4641"
    },
    {
      "cve": "CVE-2023-46589",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2023-47100",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-47100"
    },
    {
      "cve": "CVE-2023-4863",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-4863"
    },
    {
      "cve": "CVE-2023-48795",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-49083",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-49083"
    },
    {
      "cve": "CVE-2023-5072",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5072"
    },
    {
      "cve": "CVE-2023-51074",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-51074"
    },
    {
      "cve": "CVE-2023-51257",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-51257"
    },
    {
      "cve": "CVE-2023-51775",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-51775"
    },
    {
      "cve": "CVE-2023-5341",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5341"
    },
    {
      "cve": "CVE-2023-5363",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5363"
    },
    {
      "cve": "CVE-2023-6507",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-6507"
    },
    {
      "cve": "CVE-2024-1635",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-1635"
    },
    {
      "cve": "CVE-2024-21626",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21626"
    },
    {
      "cve": "CVE-2024-22201",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22233",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-22233"
    },
    {
      "cve": "CVE-2024-22257",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-22257"
    },
    {
      "cve": "CVE-2024-22259",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-22259"
    },
    {
      "cve": "CVE-2024-25062",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-26130",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26130"
    },
    {
      "cve": "CVE-2024-26308",
      "product_status": {
        "known_affected": [
          "T028682",
          "T034149",
          "T030586",
          "T034148",
          "T030589",
          "67646",
          "T034143",
          "T015632",
          "T012167",
          "T004914",
          "T034147",
          "T034146",
          "T030583",
          "T034145",
          "T032088",
          "T034150",
          "T021645",
          "T032091",
          "T027326",
          "T024981",
          "T028684"
        ],
        "last_affected": [
          "T030595",
          "T030593",
          "T034144"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

WID-SEC-W-2024-0870

Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2024-04-22 22:00

Summary

Oracle Communications Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Windows

CVE-2021-37533

In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2022-34169

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2022-34381

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-0833

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-2976

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-34053

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-34055

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-4043

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-44487

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-47100

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2023-6378

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2024-21634

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

CVE-2024-26308

Affected products

Known affected 8 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	7.4.2
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications Applications 7.3.6.4 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.3.6.4`	7.3.6.4
Oracle Communications Applications 15.0.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:15.0.0.0`	15.0.0.0
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	7.4.1
Oracle Communications Applications 8.0.0.1.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:8.0.0.1.0`	8.0.0.1.0
Oracle Communications Applications 7.5.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.1`	7.5.1
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	7.5.0

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Communications Applications <=12.0.0.8 Oracle / Communications Applications		<=12.0.0.8
Oracle Communications Applications <=7.4.2 Oracle / Communications Applications		<=7.4.2

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2024…	external
https://access.redhat.com/errata/RHSA-2024:1797	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0870 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0870.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0870 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0870"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Communications Applications vom 2024-04-16",
        "url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixCAGBU"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1797 vom 2024-04-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:1797"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Communications Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-04-22T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:07:40.529+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0870",
      "initial_release_date": "2024-04-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-04-22T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.4.1",
                "product": {
                  "name": "Oracle Communications Applications 7.4.1",
                  "product_id": "T018939",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.4.2",
                "product": {
                  "name": "Oracle Communications Applications 7.4.2",
                  "product_id": "T018940",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=12.0.0.8",
                "product": {
                  "name": "Oracle Communications Applications \u003c=12.0.0.8",
                  "product_id": "T034251"
                }
              },
              {
                "category": "product_version",
                "name": "15.0.0.0",
                "product": {
                  "name": "Oracle Communications Applications 15.0.0.0",
                  "product_id": "T034252",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:15.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.3.6.4",
                "product": {
                  "name": "Oracle Communications Applications 7.3.6.4",
                  "product_id": "T034253",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.3.6.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.4.2",
                "product": {
                  "name": "Oracle Communications Applications \u003c=7.4.2",
                  "product_id": "T034254"
                }
              },
              {
                "category": "product_version",
                "name": "7.5.0",
                "product": {
                  "name": "Oracle Communications Applications 7.5.0",
                  "product_id": "T034255",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.5.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.5.1",
                "product": {
                  "name": "Oracle Communications Applications 7.5.1",
                  "product_id": "T034256",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.5.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.0.1.0",
                "product": {
                  "name": "Oracle Communications Applications 8.0.0.1.0",
                  "product_id": "T034257",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:8.0.0.1.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Communications Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-37533",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2022-34169",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-34169"
    },
    {
      "cve": "CVE-2022-34381",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-34381"
    },
    {
      "cve": "CVE-2023-0833",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-0833"
    },
    {
      "cve": "CVE-2023-2976",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-2976"
    },
    {
      "cve": "CVE-2023-34053",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-34053"
    },
    {
      "cve": "CVE-2023-34055",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-34055"
    },
    {
      "cve": "CVE-2023-4043",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-4043"
    },
    {
      "cve": "CVE-2023-44487",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-47100",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-47100"
    },
    {
      "cve": "CVE-2023-6378",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-6378"
    },
    {
      "cve": "CVE-2024-21634",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21634"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "67646",
          "T034253",
          "T034252",
          "T018939",
          "T034257",
          "T034256",
          "T034255"
        ],
        "last_affected": [
          "T034251",
          "T034254"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

WID-SEC-W-2024-0873

Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2024-04-16 22:00

Summary

Oracle Financial Services Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Financial Services ist eine Zusammenstellung von Anwendungen für den Finanzsektor und eine Technologiebasis zur Erfüllung von IT- und Geschäftsanforderungen.

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2022-31160

In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2022-46337

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-2618

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-33201

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-42503

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-44271

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-44483

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-44487

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-44981

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-46589

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-46604

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2023-5072

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2024-23635

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

CVE-2024-26308

Affected products

Known affected 20 products

Product	Identifier	Version
Oracle Financial Services Applications 19.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1.0.0.0`	19.1.0.0.0
Oracle Financial Services Applications 19.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2.0.0.0`	19.2.0.0.0
Oracle Financial Services Applications 12.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:12.1.0.0.0`	12.1.0.0.0
Oracle Financial Services Applications 3.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0.0.0.0`	3.0.0.0.0
Oracle Financial Services Applications 2.8.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8.0.0.0`	2.8.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 14.7.0.3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.3.0`	14.7.0.3.0
Oracle Financial Services Applications 5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:5.0.0.0`	5.0.0.0
Oracle Financial Services Applications 4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0.0.0`	4.0.0.0
Oracle Financial Services Applications 3.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1.0.0.0`	3.1.0.0.0
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 2.9.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.0.0`	2.9.0.0.0
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 2.9.0.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.0.1.0`	2.9.0.1.0
Oracle Financial Services Applications 3.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2.0.0.0`	3.2.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 22.2.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2.0.0.0`	22.2.0.0.0
Oracle Financial Services Applications 21.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1.0.0.0`	21.1.0.0.0
Oracle Financial Services Applications 22.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1.0.0.0`	22.1.0.0.0

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2024…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Financial Services ist eine Zusammenstellung  von Anwendungen f\u00fcr den Finanzsektor und eine Technologiebasis zur Erf\u00fcllung von IT- und Gesch\u00e4ftsanforderungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0873 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0873.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0873 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0873"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Financial Services Applications vom 2024-04-16",
        "url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixIFLX"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Financial Services Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-04-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:07:41.626+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0873",
      "initial_release_date": "2024-04-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2.9.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.9.0.0.0",
                  "product_id": "T023930",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.9.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.9.0.1.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.9.0.1.0",
                  "product_id": "T023931",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.9.0.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3.2.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 3.2.0.0.0",
                  "product_id": "T023932",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.2.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "19.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 19.1.0.0.0",
                  "product_id": "T028693",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:19.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "19.2.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 19.2.0.0.0",
                  "product_id": "T028694",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:19.2.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "21.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 21.1.0.0.0",
                  "product_id": "T028695",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:21.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "22.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 22.1.0.0.0",
                  "product_id": "T028696",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:22.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "22.2.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 22.2.0.0.0",
                  "product_id": "T028697",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:22.2.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.7.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.7.0.0.0",
                  "product_id": "T028702",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.7.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.7.0.3.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.7.0.3.0",
                  "product_id": "T032111",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.7.0.3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 12.1.0.0.0",
                  "product_id": "T034159",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:12.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.5.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.5.0.0.0",
                  "product_id": "T034160",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.5.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.6.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.6.0.0.0",
                  "product_id": "T034161",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.6.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.12.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.12.0.0.0",
                  "product_id": "T034162",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.12.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.7.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.7.0.0.0",
                  "product_id": "T034163",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.7.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.8.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.8.0.0.0",
                  "product_id": "T034164",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.8.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3.0.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 3.0.0.0.0",
                  "product_id": "T034165",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.0.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 3.1.0.0.0",
                  "product_id": "T034166",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 4.0.0.0",
                  "product_id": "T034167",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:4.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 5.0.0.0",
                  "product_id": "T034168",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:5.0.0.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Financial Services Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-31160",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-31160"
    },
    {
      "cve": "CVE-2022-46337",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-46337"
    },
    {
      "cve": "CVE-2023-2618",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-2618"
    },
    {
      "cve": "CVE-2023-33201",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-33201"
    },
    {
      "cve": "CVE-2023-42503",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-42503"
    },
    {
      "cve": "CVE-2023-44271",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44271"
    },
    {
      "cve": "CVE-2023-44483",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44483"
    },
    {
      "cve": "CVE-2023-44487",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-44981",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44981"
    },
    {
      "cve": "CVE-2023-46589",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2023-46604",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-46604"
    },
    {
      "cve": "CVE-2023-5072",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5072"
    },
    {
      "cve": "CVE-2024-23635",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-23635"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028693",
          "T028694",
          "T034159",
          "T034165",
          "T034164",
          "T034163",
          "T034162",
          "T032111",
          "T034168",
          "T034167",
          "T034166",
          "T034161",
          "T023930",
          "T034160",
          "T023931",
          "T023932",
          "T028702",
          "T028697",
          "T028695",
          "T028696"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

WID-SEC-W-2024-0899

Vulnerability from csaf_certbund - Published: 2024-04-16 22:00 - Updated: 2025-06-09 22:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2019-0231

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2019-10172

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2019-13990

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2021-23369

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-1471

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-24329

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-25147

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-34169

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-34381

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-42003

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-45378

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-46337

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-48579

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-24021

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-2976

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-31122

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-33201

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-35116

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-35887

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-3635

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-37536

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-44487

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-46218

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-46589

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-48795

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-5072

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-52428

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-1597

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-20991

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-20992

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21006

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21007

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21117

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21118

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21119

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21120

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-23635

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-26308

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	8.5.6
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	12.2.1.3.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2024…	external
https://github.com/d3fudd/CVE-2024-21006_POC	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0899 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0899.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0899 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0899"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2024 - Appendix Oracle Fusion Middleware vom 2024-04-16",
        "url": "https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixFMW"
      },
      {
        "category": "external",
        "summary": "PoC CVE-2024-21006 vom 2025-06-09",
        "url": "https://github.com/d3fudd/CVE-2024-21006_POC"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-06-09T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-10T06:12:15.168+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-0899",
      "initial_release_date": "2024-04-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-06-09T22:00:00.000+00:00",
          "number": "2",
          "summary": "PoC f\u00fcr CVE-2024-21006 aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12.2.1.3.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.3.0",
                  "product_id": "618028",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.5.6",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.6",
                  "product_id": "T024993",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.5.7",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.7",
                  "product_id": "T034057",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-0231",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2019-0231"
    },
    {
      "cve": "CVE-2019-10172",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2019-10172"
    },
    {
      "cve": "CVE-2019-13990",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2019-13990"
    },
    {
      "cve": "CVE-2021-23369",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2021-23369"
    },
    {
      "cve": "CVE-2022-1471",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2022-24329",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-24329"
    },
    {
      "cve": "CVE-2022-25147",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-25147"
    },
    {
      "cve": "CVE-2022-34169",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-34169"
    },
    {
      "cve": "CVE-2022-34381",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-34381"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-45378",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-45378"
    },
    {
      "cve": "CVE-2022-46337",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-46337"
    },
    {
      "cve": "CVE-2022-48579",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2022-48579"
    },
    {
      "cve": "CVE-2023-24021",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-24021"
    },
    {
      "cve": "CVE-2023-2976",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-2976"
    },
    {
      "cve": "CVE-2023-31122",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-31122"
    },
    {
      "cve": "CVE-2023-33201",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-33201"
    },
    {
      "cve": "CVE-2023-35116",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-35116"
    },
    {
      "cve": "CVE-2023-35887",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-35887"
    },
    {
      "cve": "CVE-2023-3635",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-3635"
    },
    {
      "cve": "CVE-2023-37536",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-37536"
    },
    {
      "cve": "CVE-2023-44487",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-46218",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-46218"
    },
    {
      "cve": "CVE-2023-46589",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2023-48795",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-5072",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-5072"
    },
    {
      "cve": "CVE-2023-52428",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2023-52428"
    },
    {
      "cve": "CVE-2024-1597",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-1597"
    },
    {
      "cve": "CVE-2024-20991",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-20991"
    },
    {
      "cve": "CVE-2024-20992",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-20992"
    },
    {
      "cve": "CVE-2024-21006",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21006"
    },
    {
      "cve": "CVE-2024-21007",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21007"
    },
    {
      "cve": "CVE-2024-21117",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21117"
    },
    {
      "cve": "CVE-2024-21118",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21118"
    },
    {
      "cve": "CVE-2024-21119",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21119"
    },
    {
      "cve": "CVE-2024-21120",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-21120"
    },
    {
      "cve": "CVE-2024-23635",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-23635"
    },
    {
      "cve": "CVE-2024-26308",
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-04-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

WID-SEC-W-2024-1360

Vulnerability from csaf_certbund - Published: 2024-06-11 22:00 - Updated: 2024-12-01 23:00

Summary

IBM DB2: Mehrere Schwachstellen

Severity

Mittel

Notes

Produktbeschreibung: IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.

Angriff: Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in IBM DB2 ausnutzen, um einen Denial of Service Angriff durchzuführen, beliebigen Code auszuführen und vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2023-29267

In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden.

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2023-45853

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-25710

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-26308

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-28762

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-29025

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-31880

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-31881

Affected products

Known affected 10 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-28757

In IBM DB2 besteht eine Schwachstelle. Dieser Fehler betrifft die Expat-Bibliothek aufgrund einer unsachgemäßen Behandlung von XML External Entity (XXE)-Deklarationen durch die Funktion XML_ExternalEntityParserCreate, was zur Offenlegung vertraulicher Informationen führt. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen preiszugeben und diese Informationen für weitere Angriffe zu verwenden.

Affected products

Known affected 9 products

Product	Identifier	Version
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
IBM DB2 <V10.5 IBM / DB2		<V10.5
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-29131

In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in der Open-Source-Bibliothek commons-configuration2 bei Verwendung des NoSQL-Hadoop-Wrappers aufgrund eines Out-of-Bounds-Write-Problems. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.

Affected products

Known affected 9 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

CVE-2024-29133

Affected products

Known affected 9 products

Product	Identifier	Version
IBM DB2 <V11.5 IBM / DB2		<V11.5
IBM License Metric Tool 9.2 IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:9.2`	9.2
Atlassian Confluence Data Center <8.9.3 Atlassian / Confluence		Data Center <8.9.3
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM Tivoli Business Service Manager <6.2.0.5 IF5 IBM / Tivoli Business Service Manager		<6.2.0.5 IF5
IBM DB2 <V11.1 IBM / DB2		<V11.1
Atlassian Confluence <7.19.24 LTS Atlassian / Confluence		<7.19.24 LTS
Atlassian Confluence <8.5.11 LTS Atlassian / Confluence		<8.5.11 LTS

References

16 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7156844	external
https://www.ibm.com/support/pages/node/7156845	external
https://www.ibm.com/support/pages/node/7156846	external
https://www.ibm.com/support/pages/node/7156847	external
https://www.ibm.com/support/pages/node/7156848	external
https://www.ibm.com/support/pages/node/7156849	external
https://www.ibm.com/support/pages/node/7156850	external
https://www.ibm.com/support/pages/node/7156851	external
https://www.ibm.com/support/pages/node/7156852	external
https://confluence.atlassian.com/security/securit…	external
https://www.ibm.com/support/pages/node/7159926	external
https://www.ibm.com/support/pages/node/7167605	external
https://www.ibm.com/support/pages/node/7168022	external
https://support.hcl-software.com/community?id=com…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in IBM DB2 ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, beliebigen Code auszuf\u00fchren und vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1360 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1360.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1360 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1360"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156844 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156844"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156845 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156845"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156846 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156846"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156847 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156847"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156848 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156848"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156849 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156849"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156850 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156850"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156851 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156851"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7156852 vom 2024-06-11",
        "url": "https://www.ibm.com/support/pages/node/7156852"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - June 18 2024",
        "url": "https://confluence.atlassian.com/security/security-bulletin-june-18-2024-1409286211.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159926 vom 2024-07-10",
        "url": "https://www.ibm.com/support/pages/node/7159926"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7167605 vom 2024-09-05",
        "url": "https://www.ibm.com/support/pages/node/7167605"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7168022 vom 2024-09-10",
        "url": "https://www.ibm.com/support/pages/node/7168022"
      },
      {
        "category": "external",
        "summary": "HCL Security Advisory vom 2024-11-30",
        "url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=ab451f7ffb0a5210db10f2797befdcca"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM DB2: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-12-01T23:00:00.000+00:00",
      "generator": {
        "date": "2024-12-02T09:04:01.365+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-1360",
      "initial_release_date": "2024-06-11T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-06-18T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2024-07-09T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-09-05T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-09-10T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
        },
        {
          "date": "2024-12-01T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von HCL aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Data Center \u003c8.9.3",
                "product": {
                  "name": "Atlassian Confluence Data Center \u003c8.9.3",
                  "product_id": "T035527"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 8.9.3",
                "product": {
                  "name": "Atlassian Confluence Data Center 8.9.3",
                  "product_id": "T035527-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:data_center__8.9.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.5.11 LTS",
                "product": {
                  "name": "Atlassian Confluence \u003c8.5.11 LTS",
                  "product_id": "T035530"
                }
              },
              {
                "category": "product_version",
                "name": "8.5.11 LTS",
                "product": {
                  "name": "Atlassian Confluence 8.5.11 LTS",
                  "product_id": "T035530-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.11_lts"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.19.24 LTS",
                "product": {
                  "name": "Atlassian Confluence \u003c7.19.24 LTS",
                  "product_id": "T035531"
                }
              },
              {
                "category": "product_version",
                "name": "7.19.24 LTS",
                "product": {
                  "name": "Atlassian Confluence 7.19.24 LTS",
                  "product_id": "T035531-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:7.19.24_lts"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HCL Commerce",
            "product": {
              "name": "HCL Commerce",
              "product_id": "T019293",
              "product_identification_helper": {
                "cpe": "cpe:/a:hcltechsw:commerce:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cV10.5",
                "product": {
                  "name": "IBM DB2 \u003cV10.5",
                  "product_id": "T035400"
                }
              },
              {
                "category": "product_version",
                "name": "V10.5",
                "product": {
                  "name": "IBM DB2 V10.5",
                  "product_id": "T035400-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:db2:v10.5"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003cV11.1",
                "product": {
                  "name": "IBM DB2 \u003cV11.1",
                  "product_id": "T035401"
                }
              },
              {
                "category": "product_version",
                "name": "V11.1",
                "product": {
                  "name": "IBM DB2 V11.1",
                  "product_id": "T035401-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:db2:v11.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003cV11.5",
                "product": {
                  "name": "IBM DB2 \u003cV11.5",
                  "product_id": "T035402"
                }
              },
              {
                "category": "product_version",
                "name": "V11.5",
                "product": {
                  "name": "IBM DB2 V11.5",
                  "product_id": "T035402-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:db2:v11.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "DB2"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "9.2",
                "product": {
                  "name": "IBM License Metric Tool 9.2",
                  "product_id": "T027649",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:license_metric_tool:9.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "License Metric Tool"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c6.2.0.5 IF5",
                "product": {
                  "name": "IBM Tivoli Business Service Manager \u003c6.2.0.5 IF5",
                  "product_id": "T037436"
                }
              },
              {
                "category": "product_version",
                "name": "6.2.0.5 IF5",
                "product": {
                  "name": "IBM Tivoli Business Service Manager 6.2.0.5 IF5",
                  "product_id": "T037436-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:tivoli_business_service_manager:6.2.0.5_if5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Tivoli Business Service Manager"
          },
          {
            "category": "product_name",
            "name": "IBM Tivoli Key Lifecycle Manager",
            "product": {
              "name": "IBM Tivoli Key Lifecycle Manager",
              "product_id": "T026238",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:tivoli_key_lifecycle_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-29267",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2023-29267"
    },
    {
      "cve": "CVE-2023-45853",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2023-45853"
    },
    {
      "cve": "CVE-2024-25710",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-25710"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-28762",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-28762"
    },
    {
      "cve": "CVE-2024-29025",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-31880",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-31880"
    },
    {
      "cve": "CVE-2024-31881",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten wie MiniZip, dem NoSQL-Blockchain-Wrapper, der compress-Bibliothek oder der netty-codec-http-Bibliothek aufgrund mehrerer sicherheitsrelevanter Probleme wie einem Heap-Based-Buffer Overflow, einem Infinite-Loop-Fehler oder einem Out-of-Memory-Fehler. Ein entfernter, authentisierter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen. Einige der Schwachstellen erfordern Benutzerinteraktion oder niedrige Privilegien, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-31881"
    },
    {
      "cve": "CVE-2024-28757",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 besteht eine Schwachstelle. Dieser Fehler betrifft die Expat-Bibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von XML External Entity (XXE)-Deklarationen durch die Funktion XML_ExternalEntityParserCreate, was zur Offenlegung vertraulicher Informationen f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen preiszugeben und diese Informationen f\u00fcr weitere Angriffe zu verwenden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035400",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-28757"
    },
    {
      "cve": "CVE-2024-29131",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in der Open-Source-Bibliothek commons-configuration2 bei Verwendung des NoSQL-Hadoop-Wrappers aufgrund eines Out-of-Bounds-Write-Problems. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-29131"
    },
    {
      "cve": "CVE-2024-29133",
      "notes": [
        {
          "category": "description",
          "text": "In IBM DB2 bestehen mehrere Schwachstellen. Diese Fehler bestehen in der Open-Source-Bibliothek commons-configuration2 bei Verwendung des NoSQL-Hadoop-Wrappers aufgrund eines Out-of-Bounds-Write-Problems. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035402",
          "T027649",
          "T035527",
          "T019293",
          "T026238",
          "T037436",
          "T035401",
          "T035531",
          "T035530"
        ]
      },
      "release_date": "2024-06-11T22:00:00.000+00:00",
      "title": "CVE-2024-29133"
    }
  ]
}

WID-SEC-W-2024-1637

Vulnerability from csaf_certbund - Published: 2024-07-16 22:00 - Updated: 2025-03-05 23:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2020-13956

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2020-1945

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2021-29425

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2021-37533

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-40152

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2022-45378

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-24998

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-29081

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-2976

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-34034

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-36478

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-45853

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-46750

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-4759

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-48795

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-5072

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-52425

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2023-6129

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-0853

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21133

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21175

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21181

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21182

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-21183

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-22201

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-22243

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-22259

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-22262

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-25062

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-26308

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-29025

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

CVE-2024-29857

Affected products

Known affected 7 products

Product	Identifier	Version
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
IBM FileNet Content Manager 5.6.0 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.6.0`	5.6.0
IBM FileNet Content Manager 5.5.12 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.12`	5.5.12
Oracle Fusion Middleware 12.2.1.19.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.19.0`	12.2.1.19.0
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	12.2.1.4.0
Oracle Fusion Middleware 8.5.7 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.7`	8.5.7
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	14.1.1.0.0

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2024…	external
https://github.com/k4it0k1d/CVE-2024-21182	external
https://www.ibm.com/support/pages/node/7184867	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1637 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1637.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1637 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1637"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2024 - Appendix Oracle Fusion Middleware vom 2024-07-16",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html#AppendixFMW"
      },
      {
        "category": "external",
        "summary": "PoC CVE-2024-21182 vom 2024-12-30",
        "url": "https://github.com/k4it0k1d/CVE-2024-21182"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7184867 vom 2025-03-05",
        "url": "https://www.ibm.com/support/pages/node/7184867"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-03-05T23:00:00.000+00:00",
      "generator": {
        "date": "2025-03-06T09:18:07.394+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-1637",
      "initial_release_date": "2024-07-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-12-30T23:00:00.000+00:00",
          "number": "2",
          "summary": "PoC f\u00fcr CVE-2024-21182 erg\u00e4nzt"
        },
        {
          "date": "2025-03-05T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5.5.8",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.8",
                  "product_id": "1487483",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.5.12",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.12",
                  "product_id": "T039291",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.12"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.6.0",
                "product": {
                  "name": "IBM FileNet Content Manager 5.6.0",
                  "product_id": "T039292",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.6.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FileNet Content Manager"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.5.7",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.7",
                  "product_id": "T034057",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.2.1.19.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.19.0",
                  "product_id": "T036225",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.19.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-13956",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2020-13956"
    },
    {
      "cve": "CVE-2020-1945",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2020-1945"
    },
    {
      "cve": "CVE-2021-29425",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2021-29425"
    },
    {
      "cve": "CVE-2021-37533",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2022-40152",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-45378",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-45378"
    },
    {
      "cve": "CVE-2023-24998",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-29081",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-29081"
    },
    {
      "cve": "CVE-2023-2976",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-2976"
    },
    {
      "cve": "CVE-2023-34034",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-34034"
    },
    {
      "cve": "CVE-2023-36478",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-36478"
    },
    {
      "cve": "CVE-2023-45853",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-45853"
    },
    {
      "cve": "CVE-2023-46750",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-46750"
    },
    {
      "cve": "CVE-2023-4759",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-4759"
    },
    {
      "cve": "CVE-2023-48795",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-5072",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-5072"
    },
    {
      "cve": "CVE-2023-52425",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2023-6129",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2024-0853",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-0853"
    },
    {
      "cve": "CVE-2024-21133",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21133"
    },
    {
      "cve": "CVE-2024-21175",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21175"
    },
    {
      "cve": "CVE-2024-21181",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21181"
    },
    {
      "cve": "CVE-2024-21182",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21182"
    },
    {
      "cve": "CVE-2024-21183",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21183"
    },
    {
      "cve": "CVE-2024-22201",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22243",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22243"
    },
    {
      "cve": "CVE-2024-22259",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22259"
    },
    {
      "cve": "CVE-2024-22262",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-25062",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-26308",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-29025",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-29857",
      "product_status": {
        "known_affected": [
          "1487483",
          "T039292",
          "T039291",
          "T036225",
          "751674",
          "T034057",
          "829576"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-29857"
    }
  ]
}

WID-SEC-W-2024-1638

Vulnerability from csaf_certbund - Published: 2024-07-16 22:00 - Updated: 2024-07-16 22:00

Summary

Oracle Financial Services Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Financial Services ist eine Zusammenstellung von Anwendungen für den Finanzsektor und eine Technologiebasis zur Erfüllung von IT- und Geschäftsanforderungen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2022-36944

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-26031

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-34055

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-44483

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-47248

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-50447

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-51074

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-52425

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2023-6129

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-21188

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-22201

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-22262

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-23807

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-24549

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-24816

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-25062

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-2511

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-26308

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-29025

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-29133

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

CVE-2024-32114

Affected products

Known affected 25 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6`	8.1.2.6
Oracle Financial Services Applications 6.1.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.1.0.0.0`	6.1.0.0.0
Oracle Financial Services Applications 2.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.4.0.0.0`	2.4.0.0.0
Oracle Financial Services Applications 2.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.0.0.0`	2.7.0.0.0
Oracle Financial Services Applications 2.12.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.12.0.0.0`	2.12.0.0.0
Oracle Financial Services Applications 8.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1`	8.1.1
Oracle Financial Services Applications 8.1.2.6.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.6.4`	8.1.2.6.4
Oracle Financial Services Applications 8.1.2.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7.3`	8.1.2.7.3
Oracle Financial Services Applications 6.0.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:6.0.0.0.0`	6.0.0.0.0
Oracle Financial Services Applications 8.0.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8`	8.0.8
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	8.0.8.1
Oracle Financial Services Applications 8.0.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7`	8.0.7
Oracle Financial Services Applications 8.0.7.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3`	8.0.7.3
Oracle Financial Services Applications 8.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2`	8.1.2
Oracle Financial Services Applications 14.6.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.6.0.0.0`	14.6.0.0.0
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	8.0.8.0
Oracle Financial Services Applications 8.1.2.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.5`	8.1.2.5
Oracle Financial Services Applications 14.5.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.5.0.0.0`	14.5.0.0.0
Oracle Financial Services Applications 14.7.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7.0.0.0`	14.7.0.0.0
Oracle Financial Services Applications 8.0.8.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3`	8.0.8.3
Oracle Financial Services Applications 8.1.2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.7`	8.1.2.7
Oracle Financial Services Applications 8.0.8.2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.8`	8.0.8.2.8
Oracle Financial Services Applications 8.1.1.1.18 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.18`	8.1.1.1.18
Oracle Financial Services Applications 14.4.0.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.4.0.0.0`	14.4.0.0.0
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	8.1.1.1

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2024…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Financial Services ist eine Zusammenstellung  von Anwendungen f\u00fcr den Finanzsektor und eine Technologiebasis zur Erf\u00fcllung von IT- und Gesch\u00e4ftsanforderungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1638 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1638.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1638 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1638"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2024 - Appendix Oracle Financial Services Applications vom 2024-07-16",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html#AppendixIFLX"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Financial Services Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-07-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:11:26.257+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1638",
      "initial_release_date": "2024-07-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "8.1.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1",
                  "product_id": "T019891",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.7",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7",
                  "product_id": "T021676",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.8",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8",
                  "product_id": "T021677",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.1.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.1",
                  "product_id": "T022835",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.8.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.0",
                  "product_id": "T022841",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.8.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.1",
                  "product_id": "T022844",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.7.3",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.3",
                  "product_id": "T024989",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.7.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.7.0.0.0",
                  "product_id": "T028702",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.7.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2",
                  "product_id": "T028705",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2.5",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.5",
                  "product_id": "T028706",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2.6",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.6",
                  "product_id": "T032104",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.5.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.5.0.0.0",
                  "product_id": "T034160",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.5.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.6.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.6.0.0.0",
                  "product_id": "T034161",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.6.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.12.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.12.0.0.0",
                  "product_id": "T034162",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.12.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.7.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.7.0.0.0",
                  "product_id": "T034163",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.7.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.4.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 14.4.0.0.0",
                  "product_id": "T036215",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.4.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.8.3",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.3",
                  "product_id": "T036216",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2.7",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.7",
                  "product_id": "T036217",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.0.8.2.8",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.2.8",
                  "product_id": "T036218",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.2.8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.1.1.18",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.1.18",
                  "product_id": "T036219",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.1.18"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2.6.4",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.6.4",
                  "product_id": "T036220",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.6.4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8.1.2.7.3",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.7.3",
                  "product_id": "T036221",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.7.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.0.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 6.0.0.0.0",
                  "product_id": "T036222",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:6.0.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.1.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 6.1.0.0.0",
                  "product_id": "T036223",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:6.1.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2.4.0.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 2.4.0.0.0",
                  "product_id": "T036224",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.4.0.0.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Financial Services Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-36944",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-36944"
    },
    {
      "cve": "CVE-2023-26031",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-26031"
    },
    {
      "cve": "CVE-2023-34055",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-34055"
    },
    {
      "cve": "CVE-2023-44483",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-44483"
    },
    {
      "cve": "CVE-2023-47248",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-47248"
    },
    {
      "cve": "CVE-2023-50447",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-50447"
    },
    {
      "cve": "CVE-2023-51074",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-51074"
    },
    {
      "cve": "CVE-2023-52425",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2023-6129",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2024-21188",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21188"
    },
    {
      "cve": "CVE-2024-22201",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22262",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-23807",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-23807"
    },
    {
      "cve": "CVE-2024-24549",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-24816",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-24816"
    },
    {
      "cve": "CVE-2024-25062",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-2511",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-2511"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-29025",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-29133",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-29133"
    },
    {
      "cve": "CVE-2024-32114",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T032104",
          "T036223",
          "T036224",
          "T034163",
          "T034162",
          "T019891",
          "T036220",
          "T036221",
          "T036222",
          "T021677",
          "T022844",
          "T021676",
          "T024989",
          "T028705",
          "T034161",
          "T022841",
          "T028706",
          "T034160",
          "T028702",
          "T036216",
          "T036217",
          "T036218",
          "T036219",
          "T036215",
          "T022835"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-32114"
    }
  ]
}

WID-SEC-W-2024-1642

Vulnerability from csaf_certbund - Published: 2024-07-16 22:00 - Updated: 2024-11-20 23:00

Summary

Oracle Communications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2019-10086

In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2021-29425

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2021-37533

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2021-41184

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2022-34169

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2022-36033

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2022-42890

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2022-48174

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-24998

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-33201

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-37920

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-44487

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-46589

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-48795

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-51775

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-52425

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2023-5685

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-0450

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-22019

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-22201

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-22234

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-22257

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-22262

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-23672

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-23807

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-23897

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-24549

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-25062

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-25710

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-26130

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-26308

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-27316

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-28182

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-28752

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-28849

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-29025

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-2961

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-34064

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-34069

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

CVE-2024-6162

Affected products

Known affected 21 products

Product	Identifier	Version
Oracle Communications 12.11.0 Oracle / Communications	`cpe:/a:oracle:communications:12.11.0`	12.11.0
Oracle Communications 4.1.0 Oracle / Communications	`cpe:/a:oracle:communications:4.1.0`	4.1.0
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Oracle Communications 4.2.0 Oracle / Communications	`cpe:/a:oracle:communications:4.2.0`	4.2.0
Oracle Communications 9.2.0 Oracle / Communications	`cpe:/a:oracle:communications:9.2.0`	9.2.0
Oracle Communications 9.3.0 Oracle / Communications	`cpe:/a:oracle:communications:9.3.0`	9.3.0
Oracle Communications 23.4.1 Oracle / Communications	`cpe:/a:oracle:communications:23.4.1`	23.4.1
Oracle Communications 12.11.3 Oracle / Communications	`cpe:/a:oracle:communications:12.11.3`	12.11.3
Oracle Communications 12.11.4 Oracle / Communications	`cpe:/a:oracle:communications:12.11.4`	12.11.4
Oracle Communications 10.5 Oracle / Communications	`cpe:/a:oracle:communications:10.5`	10.5
Oracle Communications 24.2.0 Oracle / Communications	`cpe:/a:oracle:communications:24.2.0`	24.2.0
Oracle Communications 5.2 Oracle / Communications	`cpe:/a:oracle:communications:5.2`	5.2
Oracle Communications 24.1.0 Oracle / Communications	`cpe:/a:oracle:communications:24.1.0`	24.1.0
Oracle Communications 46.6.4 Oracle / Communications	`cpe:/a:oracle:communications:46.6.4`	46.6.4
Oracle Communications 23.4.2 Oracle / Communications	`cpe:/a:oracle:communications:23.4.2`	23.4.2
Oracle Communications 46.6.5 Oracle / Communications	`cpe:/a:oracle:communications:46.6.5`	46.6.5
Oracle Communications 15.0.0.0.0 Oracle / Communications	`cpe:/a:oracle:communications:15.0.0.0.0`	15.0.0.0.0
Oracle Communications 23.4.0 Oracle / Communications	`cpe:/a:oracle:communications:23.4.0`	23.4.0
Oracle Communications 23.1.0 Oracle / Communications	`cpe:/a:oracle:communications:23.1.0`	23.1.0
Oracle Communications 12.6.1.0.0 Oracle / Communications	`cpe:/a:oracle:communications:12.6.1.0.0`	12.6.1.0.0
Oracle Communications 5.1 Oracle / Communications	`cpe:/a:oracle:communications:5.1`	5.1

Last affected 5 products

Product	Identifier	Version	Remediation
Oracle Communications <=23.4.3 Oracle / Communications		<=23.4.3
Oracle Communications <=23.4.4 Oracle / Communications		<=23.4.4
Oracle Communications <=8.6.0.6 Oracle / Communications		<=8.6.0.6
Oracle Communications <=8.6.0.8 Oracle / Communications		<=8.6.0.8
Oracle Communications <=9.0.3 Oracle / Communications		<=9.0.3

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2024…	external
https://access.redhat.com/errata/RHSA-2024:6016	external
https://access.redhat.com/errata/RHSA-2024:9975	external
https://access.redhat.com/errata/RHSA-2024:9976	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Communications umfasst branchenspezifische L\u00f6sungen f\u00fcr die Telekommunikationsbranche.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1642 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1642.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1642 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1642"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2024 - Appendix Oracle Communications vom 2024-07-16",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html#AppendixCGBU"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6016 vom 2024-09-05",
        "url": "https://access.redhat.com/errata/RHSA-2024:6016"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9975 vom 2024-11-21",
        "url": "https://access.redhat.com/errata/RHSA-2024:9975"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9976 vom 2024-11-21",
        "url": "https://access.redhat.com/errata/RHSA-2024:9976"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Communications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-11-20T23:00:00.000+00:00",
      "generator": {
        "date": "2024-11-21T13:09:50.776+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-1642",
      "initial_release_date": "2024-07-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-09-05T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-20T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "23.1.0",
                "product": {
                  "name": "Oracle Communications 23.1.0",
                  "product_id": "T027326",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.6.1.0.0",
                "product": {
                  "name": "Oracle Communications 12.6.1.0.0",
                  "product_id": "T027338",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:12.6.1.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.1",
                "product": {
                  "name": "Oracle Communications 5.1",
                  "product_id": "T028684",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:5.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "15.0.0.0.0",
                "product": {
                  "name": "Oracle Communications 15.0.0.0.0",
                  "product_id": "T032090",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:15.0.0.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.4.0",
                "product": {
                  "name": "Oracle Communications 23.4.0",
                  "product_id": "T032091",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.4.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.4.1",
                "product": {
                  "name": "Oracle Communications 23.4.1",
                  "product_id": "T034143",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.4.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.4.2",
                "product": {
                  "name": "Oracle Communications 23.4.2",
                  "product_id": "T034144",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:23.4.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "24.1.0",
                "product": {
                  "name": "Oracle Communications 24.1.0",
                  "product_id": "T034145",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:24.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.2",
                "product": {
                  "name": "Oracle Communications 5.2",
                  "product_id": "T034146",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:5.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.3",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.3",
                  "product_id": "T036195"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.3",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.3",
                  "product_id": "T036195-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.4",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.4",
                  "product_id": "T036196"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=23.4.4",
                "product": {
                  "name": "Oracle Communications \u003c=23.4.4",
                  "product_id": "T036196-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "24.2.0",
                "product": {
                  "name": "Oracle Communications 24.2.0",
                  "product_id": "T036197",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:24.2.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.6.0.8",
                "product": {
                  "name": "Oracle Communications \u003c=8.6.0.8",
                  "product_id": "T036198"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.6.0.8",
                "product": {
                  "name": "Oracle Communications \u003c=8.6.0.8",
                  "product_id": "T036198-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "46.6.4",
                "product": {
                  "name": "Oracle Communications 46.6.4",
                  "product_id": "T036199",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:46.6.4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "46.6.5",
                "product": {
                  "name": "Oracle Communications 46.6.5",
                  "product_id": "T036200",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:46.6.5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.11.3",
                "product": {
                  "name": "Oracle Communications 12.11.3",
                  "product_id": "T036201",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:12.11.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.11.4",
                "product": {
                  "name": "Oracle Communications 12.11.4",
                  "product_id": "T036202",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:12.11.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.6.0.6",
                "product": {
                  "name": "Oracle Communications \u003c=8.6.0.6",
                  "product_id": "T036203"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.6.0.6",
                "product": {
                  "name": "Oracle Communications \u003c=8.6.0.6",
                  "product_id": "T036203-fixed"
                }
              },
              {
                "category": "product_version",
                "name": "10.5",
                "product": {
                  "name": "Oracle Communications 10.5",
                  "product_id": "T036204",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:10.5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4.1.0",
                "product": {
                  "name": "Oracle Communications 4.1.0",
                  "product_id": "T036205",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:4.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4.2.0",
                "product": {
                  "name": "Oracle Communications 4.2.0",
                  "product_id": "T036206",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:4.2.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.2.0",
                "product": {
                  "name": "Oracle Communications 9.2.0",
                  "product_id": "T036207",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:9.2.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.3.0",
                "product": {
                  "name": "Oracle Communications 9.3.0",
                  "product_id": "T036208",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:9.3.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.11.0",
                "product": {
                  "name": "Oracle Communications 12.11.0",
                  "product_id": "T036209",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications:12.11.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=9.0.3",
                "product": {
                  "name": "Oracle Communications \u003c=9.0.3",
                  "product_id": "T036210"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=9.0.3",
                "product": {
                  "name": "Oracle Communications \u003c=9.0.3",
                  "product_id": "T036210-fixed"
                }
              }
            ],
            "category": "product_name",
            "name": "Communications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-10086",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2019-10086"
    },
    {
      "cve": "CVE-2021-29425",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2021-29425"
    },
    {
      "cve": "CVE-2021-37533",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2021-41184",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2022-34169",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-34169"
    },
    {
      "cve": "CVE-2022-36033",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-36033"
    },
    {
      "cve": "CVE-2022-42890",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-48174",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2022-48174"
    },
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-33201",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-33201"
    },
    {
      "cve": "CVE-2023-37920",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-37920"
    },
    {
      "cve": "CVE-2023-44487",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-46589",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2023-48795",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-48795"
    },
    {
      "cve": "CVE-2023-51775",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-51775"
    },
    {
      "cve": "CVE-2023-52425",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2023-5685",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2023-5685"
    },
    {
      "cve": "CVE-2024-0450",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-0450"
    },
    {
      "cve": "CVE-2024-22019",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22019"
    },
    {
      "cve": "CVE-2024-22201",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22201"
    },
    {
      "cve": "CVE-2024-22234",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22234"
    },
    {
      "cve": "CVE-2024-22257",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22257"
    },
    {
      "cve": "CVE-2024-22262",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-23672",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-23807",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-23807"
    },
    {
      "cve": "CVE-2024-23897",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-23897"
    },
    {
      "cve": "CVE-2024-24549",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-25062",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-25710",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-25710"
    },
    {
      "cve": "CVE-2024-26130",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-26130"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-27316",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-27316"
    },
    {
      "cve": "CVE-2024-28182",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-28182"
    },
    {
      "cve": "CVE-2024-28752",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-28752"
    },
    {
      "cve": "CVE-2024-28849",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-28849"
    },
    {
      "cve": "CVE-2024-29025",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-29025"
    },
    {
      "cve": "CVE-2024-2961",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-2961"
    },
    {
      "cve": "CVE-2024-34064",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-34064"
    },
    {
      "cve": "CVE-2024-34069",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-34069"
    },
    {
      "cve": "CVE-2024-6162",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036209",
          "T036205",
          "67646",
          "T036206",
          "T036207",
          "T036208",
          "T034143",
          "T036201",
          "T036202",
          "T036204",
          "T036197",
          "T034146",
          "T034145",
          "T036199",
          "T034144",
          "T036200",
          "T032090",
          "T032091",
          "T027326",
          "T027338",
          "T028684"
        ],
        "last_affected": [
          "T036195",
          "T036196",
          "T036203",
          "T036198",
          "T036210"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-6162"
    }
  ]
}

WID-SEC-W-2024-1654

Vulnerability from csaf_certbund - Published: 2024-07-16 22:00 - Updated: 2024-07-16 22:00

Summary

Oracle Retail Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Retail Applications ist eine Sammlung von Produkten zur Unterstützung u. a. von Handelsfirmen und der Gastronomie.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Retail Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - Sonstiges - Windows

CVE-2024-21136

In Oracle Retail Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "MITTEL-HOCH" für die Schadenshöhe.

Affected products

Known affected 10 products

Product	Identifier	Version
Oracle Retail Applications 19.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.1`	19.0.1
Oracle Retail Applications 19.0.5 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.5`	19.0.5
Oracle Retail Applications 14.1.3.2 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:14.1.3.2`	14.1.3.2
Oracle Retail Applications 15.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3`	15.0.3
Oracle Retail Applications 23.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:23.0.1`	23.0.1
Oracle Retail Applications 22.0.0 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:22.0.0`	22.0.0
Oracle Retail Applications 20.0.4 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.4`	20.0.4
Oracle Retail Applications 16.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:16.0.3`	16.0.3
Oracle Retail Applications 20.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.3`	20.0.3
Oracle Retail Applications 15.0.3.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3.1`	15.0.3.1

CVE-2024-22262

Affected products

Known affected 10 products

Product	Identifier	Version
Oracle Retail Applications 19.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.1`	19.0.1
Oracle Retail Applications 19.0.5 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.5`	19.0.5
Oracle Retail Applications 14.1.3.2 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:14.1.3.2`	14.1.3.2
Oracle Retail Applications 15.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3`	15.0.3
Oracle Retail Applications 23.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:23.0.1`	23.0.1
Oracle Retail Applications 22.0.0 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:22.0.0`	22.0.0
Oracle Retail Applications 20.0.4 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.4`	20.0.4
Oracle Retail Applications 16.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:16.0.3`	16.0.3
Oracle Retail Applications 20.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.3`	20.0.3
Oracle Retail Applications 15.0.3.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3.1`	15.0.3.1

CVE-2024-26308

Affected products

Known affected 10 products

Product	Identifier	Version
Oracle Retail Applications 19.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.1`	19.0.1
Oracle Retail Applications 19.0.5 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:19.0.5`	19.0.5
Oracle Retail Applications 14.1.3.2 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:14.1.3.2`	14.1.3.2
Oracle Retail Applications 15.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3`	15.0.3
Oracle Retail Applications 23.0.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:23.0.1`	23.0.1
Oracle Retail Applications 22.0.0 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:22.0.0`	22.0.0
Oracle Retail Applications 20.0.4 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.4`	20.0.4
Oracle Retail Applications 16.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:16.0.3`	16.0.3
Oracle Retail Applications 20.0.3 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:20.0.3`	20.0.3
Oracle Retail Applications 15.0.3.1 Oracle / Retail Applications	`cpe:/a:oracle:retail_applications:15.0.3.1`	15.0.3.1

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2024…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Retail Applications ist eine Sammlung von Produkten zur Unterst\u00fctzung u. a.  von Handelsfirmen und der Gastronomie.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Retail Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1654 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1654.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1654 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1654"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2024 - Appendix Oracle Retail Applications vom 2024-07-16",
        "url": "https://www.oracle.com/security-alerts/cpujul2024.html#AppendixRAPP"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Retail Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-07-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:11:30.329+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1654",
      "initial_release_date": "2024-07-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "16.0.3",
                "product": {
                  "name": "Oracle Retail Applications 16.0.3",
                  "product_id": "T019034",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:16.0.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "19.0.1",
                "product": {
                  "name": "Oracle Retail Applications 19.0.1",
                  "product_id": "T019038",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:19.0.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "15.0.3.1",
                "product": {
                  "name": "Oracle Retail Applications 15.0.3.1",
                  "product_id": "T019909",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:15.0.3.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.1.3.2",
                "product": {
                  "name": "Oracle Retail Applications 14.1.3.2",
                  "product_id": "T019910",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:14.1.3.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "15.0.3",
                "product": {
                  "name": "Oracle Retail Applications 15.0.3",
                  "product_id": "T020721",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:15.0.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "20.0.3",
                "product": {
                  "name": "Oracle Retail Applications 20.0.3",
                  "product_id": "T027400",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:20.0.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "22.0.0",
                "product": {
                  "name": "Oracle Retail Applications 22.0.0",
                  "product_id": "T030616",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:22.0.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "19.0.5",
                "product": {
                  "name": "Oracle Retail Applications 19.0.5",
                  "product_id": "T034183",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:19.0.5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "20.0.4",
                "product": {
                  "name": "Oracle Retail Applications 20.0.4",
                  "product_id": "T034184",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:20.0.4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "23.0.1",
                "product": {
                  "name": "Oracle Retail Applications 23.0.1",
                  "product_id": "T034187",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:retail_applications:23.0.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Retail Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-21136",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Retail Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019038",
          "T034183",
          "T019910",
          "T020721",
          "T034187",
          "T030616",
          "T034184",
          "T019034",
          "T027400",
          "T019909"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-21136"
    },
    {
      "cve": "CVE-2024-22262",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Retail Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019038",
          "T034183",
          "T019910",
          "T020721",
          "T034187",
          "T030616",
          "T034184",
          "T019034",
          "T027400",
          "T019909"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-22262"
    },
    {
      "cve": "CVE-2024-26308",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Retail Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019038",
          "T034183",
          "T019910",
          "T020721",
          "T034187",
          "T030616",
          "T034184",
          "T019034",
          "T027400",
          "T019909"
        ]
      },
      "release_date": "2024-07-16T22:00:00.000+00:00",
      "title": "CVE-2024-26308"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-26308 (GCVE-0-2024-26308)

Tags

Sightings

Nomenclature