Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-2341 (GCVE-0-2021-2341)
Vulnerability from cvelistv5 – Published: 2021-07-20 22:43 – Updated: 2024-09-26 14:04
VLAI
EPSS
Summary
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).
Severity
CWE
- Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data.
Assigner
References
10 references
| URL | Tags |
|---|---|
| https://www.oracle.com/security-alerts/cpujul2021.html | x_refsource_MISC |
| https://www.debian.org/security/2021/dsa-4946 | vendor-advisoryx_refsource_DEBIAN |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.debian.org/debian-lts-announce/2021… | mailing-listx_refsource_MLIST |
| https://www.oracle.com/security-alerts/cpuoct2021.html | x_refsource_MISC |
| https://security.netapp.com/advisory/ntap-2021072… | x_refsource_CONFIRM |
| https://security.gentoo.org/glsa/202209-05 | vendor-advisoryx_refsource_GENTOO |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Oracle Corporation | Java SE JDK and JRE |
Affected:
Java SE:7u301
Affected: Java SE:8u291 Affected: Java SE:11.0.11 Affected: Java SE:16.0.1 Affected: Oracle GraalVM Enterprise Edition:20.3.2 Affected: Oracle GraalVM Enterprise Edition:21.1.0 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:38:57.562Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"name": "DSA-4946",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"name": "FEDORA-2021-d20d6712bc",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"name": "FEDORA-2021-ade03666c0",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"name": "FEDORA-2021-e6b0792d75",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"name": "FEDORA-2021-4581ccb97d",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"name": "[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"name": "GLSA-202209-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202209-05"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-2341",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-09-26T13:52:12.701754Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-09-26T14:04:53.949Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Java SE JDK and JRE",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "Java SE:7u301"
},
{
"status": "affected",
"version": "Java SE:8u291"
},
{
"status": "affected",
"version": "Java SE:11.0.11"
},
{
"status": "affected",
"version": "Java SE:16.0.1"
},
{
"status": "affected",
"version": "Oracle GraalVM Enterprise Edition:20.3.2"
},
{
"status": "affected",
"version": "Oracle GraalVM Enterprise Edition:21.1.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-09-07T04:06:46.000Z",
"orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"shortName": "oracle"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"name": "DSA-4946",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"name": "FEDORA-2021-d20d6712bc",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"name": "FEDORA-2021-ade03666c0",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"name": "FEDORA-2021-e6b0792d75",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"name": "FEDORA-2021-4581ccb97d",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"name": "[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"name": "GLSA-202209-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202209-05"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2021-2341",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Java SE JDK and JRE",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Java SE:7u301"
},
{
"version_affected": "=",
"version_value": "Java SE:8u291"
},
{
"version_affected": "=",
"version_value": "Java SE:11.0.11"
},
{
"version_affected": "=",
"version_value": "Java SE:16.0.1"
},
{
"version_affected": "=",
"version_value": "Oracle GraalVM Enterprise Edition:20.3.2"
},
{
"version_affected": "=",
"version_value": "Oracle GraalVM Enterprise Edition:21.1.0"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)."
}
]
},
"impact": {
"cvss": {
"baseScore": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.oracle.com/security-alerts/cpujul2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"name": "DSA-4946",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"name": "FEDORA-2021-d20d6712bc",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"name": "FEDORA-2021-ade03666c0",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"name": "FEDORA-2021-e6b0792d75",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"name": "FEDORA-2021-4581ccb97d",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"name": "[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20210723-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"name": "GLSA-202209-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202209-05"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
"assignerShortName": "oracle",
"cveId": "CVE-2021-2341",
"datePublished": "2021-07-20T22:43:20.000Z",
"dateReserved": "2020-12-09T00:00:00.000Z",
"dateUpdated": "2024-09-26T14:04:53.949Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-2341",
"date": "2026-05-30",
"epss": "0.00378",
"percentile": "0.59611"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-2341\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2021-07-21T15:15:17.927\",\"lastModified\":\"2025-05-27T16:47:32.957\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en el producto Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Networking). Las versiones compatibles que est\u00e1n afectadas son Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 y 21.1.0. Una vulnerabilidad dif\u00edcil de explotar permite a un atacante no autenticado con acceso a la red por medio de m\u00faltiples protocolos comprometer a Java SE, Oracle GraalVM Enterprise Edition. Los ataques con \u00e9xito requieren una interacci\u00f3n humana de una persona diferente del atacante. Los ataques con \u00e9xito de esta vulnerabilidad pueden resultar en un acceso de lectura no autorizado a un subconjunto de datos accesibles de Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad se aplica a las implementaciones de Java, generalmente en clientes que ejecutan aplicaciones Java Web Start dentro del sandbox o applets de Java dentro del sandbox, que cargan y ejecutan c\u00f3digo no confiable (por ejemplo, c\u00f3digo que proviene de Internet) y conf\u00edan en el sandbox de Java para la seguridad. Esta vulnerabilidad no se aplica a las implementaciones de Java, com\u00fanmente en servidores, que cargan y ejecutan solo c\u00f3digo confiable (por ejemplo, c\u00f3digo instalado por un administrador). CVSS 3.1 Puntuaci\u00f3n Base 3.1 (Impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert_us@oracle.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N\",\"baseScore\":3.1,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.6,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"02011EDC-20A7-4A16-A592-7C76E0037997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC6D4652-1226-4C60-BEDF-01EBF8AC0849\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C1F9ED7-7D93-41F4-9130-15BA734420AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CF9CDF1-95D3-4125-A73F-396D2280FC4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*\",\"matchCriteriaId\":\"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*\",\"matchCriteriaId\":\"C28388AB-CFC9-4749-A90F-383F5B905EA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA7AD457-6CE6-4925-8D94-A907B40233D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"5480E5AD-DB46-474A-9B57-84ED088A75FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*\",\"matchCriteriaId\":\"881A4AE9-6012-4E91-98BE-0A352CC20703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E1E1079-57D9-473B-A017-964F4745F329\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8D6446E-2915-4F12-87BE-E7420BC2626E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*\",\"matchCriteriaId\":\"564EDCE3-16E6-401D-8A43-032D1F8875E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*\",\"matchCriteriaId\":\"08278802-D31B-488A-BA6A-EBC816DF883A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*\",\"matchCriteriaId\":\"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BBB0969-565E-43E2-B067-A10AAA5F1958\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*\",\"matchCriteriaId\":\"D78BE95D-6270-469A-8035-FCDDB398F952\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"88C24F40-3150-4584-93D9-8307DE04EEE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*\",\"matchCriteriaId\":\"19626B36-62FC-4497-A2E1-7D6CD9839B19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*\",\"matchCriteriaId\":\"5713AEBD-35F6-44E8-A0CC-A42830D7AE20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BE0C04B-440E-4B35-ACC8-6264514F764C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"555EC2A6-0475-48ED-AE0C-B306714A9333\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*\",\"matchCriteriaId\":\"02C55E2E-AEDE-455C-B128-168C918B5D97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*\",\"matchCriteriaId\":\"81831D37-6597-441B-87DE-38F7191BEA42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEA1594D-0AB5-436D-9E60-C26EE2175753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*\",\"matchCriteriaId\":\"B868FA41-C71B-491C-880B-484740B30C72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"C242D3BE-9114-4A9E-BB78-45754C7CC450\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*\",\"matchCriteriaId\":\"95954182-9541-4181-9647-B17FA5A79F9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"70892D06-6E75-4425-BBF0-4B684EC62A1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7417B2BB-9AC2-4AF4-A828-C89A0735AD92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A0A57B5-6F88-4288-9CDE-F6613FE068D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*\",\"matchCriteriaId\":\"67ED8559-C348-4932-B7CE-CB96976A30EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*\",\"matchCriteriaId\":\"40AC3D91-263F-4345-9FAA-0E573EA64590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD92AFA9-81F8-48D4-B79A-E7F066F69A99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C4B2F24-A730-4818-90C8-A2D90C081F03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*\",\"matchCriteriaId\":\"464087F2-C285-4574-957E-CE0663F07DE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E9BB880-A4F6-4887-8BB9-47AA298753D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*\",\"matchCriteriaId\":\"18DCFF53-B298-4534-AB5C-8A5EF59C616F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*\",\"matchCriteriaId\":\"083419F8-FDDF-4E36-88F8-857DB317C1D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7A74F65-57E8-4C9A-BA96-5EF401504F13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*\",\"matchCriteriaId\":\"07812576-3C35-404C-A7D7-9BE9E3D76E00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*\",\"matchCriteriaId\":\"00C52B1C-5447-4282-9667-9EBE0720B423\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*\",\"matchCriteriaId\":\"92BB9EB0-0C12-4E77-89EE-FB77097841B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABC0E7BB-F8B7-4369-9910-71240E4073A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*\",\"matchCriteriaId\":\"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AE30779-48FB-451E-8CE1-F469F93B8772\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*\",\"matchCriteriaId\":\"60590FDE-7156-4314-A012-AA38BD2ADDC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*\",\"matchCriteriaId\":\"F24F6122-2256-41B6-9033-794C6424ED99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EAFA79E-8C7A-48CF-8868-11378FE4B26F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1D6F19F-59B5-4BB6-AD35-013384025970\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7BA97BC-3ADA-465A-835B-6C3C5F416B56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*\",\"matchCriteriaId\":\"B71F77A4-B7EB-47A1-AAFD-431A7D040B86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*\",\"matchCriteriaId\":\"91D6BEA9-5943-44A4-946D-CEAA9BA99376\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*\",\"matchCriteriaId\":\"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CB74086-14B8-4237-8357-E0C6B5BB8313\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*\",\"matchCriteriaId\":\"00C2B9C9-1177-4DA6-96CE-55F37F383F99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*\",\"matchCriteriaId\":\"435CF189-0BD8-40DF-A0DC-99862CDEAF8A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A3F367-33AD-47C3-BFDC-871A17E72C94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*\",\"matchCriteriaId\":\"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*\",\"matchCriteriaId\":\"78261932-7373-4F16-91E0-1A72ADBEBC3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5A40B8A-D428-4008-9F21-AF21394C51D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B504718-5DCE-43B4-B19A-C6B6E7444BD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*\",\"matchCriteriaId\":\"3102AA10-99A8-49A9-867E-7EEC56865680\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*\",\"matchCriteriaId\":\"15BA8A26-2CDA-442B-A549-6BE92DCCD205\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:8:update292:*:*:*:*:*:*\",\"matchCriteriaId\":\"71F08D72-37B5-49C2-B8C9-ECF0C9C435D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"465CFA59-8E94-415A-ACF0-E678826813BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85BDC28A-484B-4D14-8D68-890450DCE3F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"635DEFDD-4840-48C6-AB1C-ADAFF4A1E50C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40A221DB-1684-4C87-B576-0969FE13E1AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE6A1B86-3688-4A13-AB37-DBD0DA323202\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17E0085B-4748-4F79-BEF6-CD9C3D2E6FE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C4DAA76-EAA9-4C85-A92A-181EA49F3270\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19FC2907-1712-4E81-AC35-E3A15BF27606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"140F8ECC-F5DB-474E-ADA4-99EC9FBA45EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7A1C3EA-BBF2-4A3F-BACE-D4A5CF9E9B88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A001F5EC-B534-424E-A8E7-FD4B1DD94BB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:11.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DF5E492-5C34-4ABB-9934-8C4CF29EE097\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD3A4AFB-8D76-4B16-A306-2A10F23E51EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1704C904-6E0A-4972-BC94-326D8BC6315A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35FA24D1-8BDA-4DD4-A74C-C041C44A1455\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"790FD30A-CE27-4A1E-A753-BE0A6B17B262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"254B5086-305E-4A19-8845-02BF7B8AA3F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D418243D-BE1E-4E43-915A-57208E9C38CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAA80ACA-8243-4E7E-98D7-594DDA75FBF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:13.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12E2041A-65AB-4BFD-BDB7-2CA4711FDE2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65118341-0005-405D-B688-A3D98FD97A76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:15.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8BB14B2-CA52-4439-A156-56C4CFF2F73A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:15.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0ADD6CAB-B69C-418A-817A-4AC02FA02FD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:15.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE9026AD-DD0C-47F3-BE28-6C8A88D199C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCFB65CD-98D5-4024-86CF-130D70DC5A5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:16.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24023B81-2034-4CDB-9116-D8D006FD600B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:20.3.2:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"C21EB1C3-3251-4B99-9D5F-E4E089E2EC62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:21.1.0:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"CA0CBB5F-6CA5-4DFC-97A3-05643F8885DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update301:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B0DA102-863A-43BC-8F61-5ED10DAFDC2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.8.0:update291:*:*:*:*:*:*\",\"matchCriteriaId\":\"791E436C-516A-423D-98A1-0F446C5027AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:11.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C0C71DD-48B0-4BB6-8A6E-A43E3161B825\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:16.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10601225-3E13-45DC-A9E3-029AD286000C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update301:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C88DC87-94BB-4DFD-A662-740E93AF95FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.8.0:update291:*:*:*:*:*:*\",\"matchCriteriaId\":\"34D8ED6C-86C3-4EFB-B94A-C7E4BE4D003F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:11.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7029CB86-1358-478A-9062-0ECB77B8AAAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:16.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"506059B3-3E98-4999-83A9-8AC6B0009820\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]}],\"references\":[{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202209-05\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210723-0002/\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4946\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2021.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202209-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210723-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4946\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.oracle.com/security-alerts/cpujul2021.html\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4946\", \"name\": \"DSA-4946\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/\", \"name\": \"FEDORA-2021-d20d6712bc\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/\", \"name\": \"FEDORA-2021-ade03666c0\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/\", \"name\": \"FEDORA-2021-e6b0792d75\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/\", \"name\": \"FEDORA-2021-4581ccb97d\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html\", \"name\": \"[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210723-0002/\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202209-05\", \"name\": \"GLSA-202209-05\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T16:38:57.562Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-2341\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-26T13:52:12.701754Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-26T13:52:46.040Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 3.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"Oracle Corporation\", \"product\": \"Java SE JDK and JRE\", \"versions\": [{\"status\": \"affected\", \"version\": \"Java SE:7u301\"}, {\"status\": \"affected\", \"version\": \"Java SE:8u291\"}, {\"status\": \"affected\", \"version\": \"Java SE:11.0.11\"}, {\"status\": \"affected\", \"version\": \"Java SE:16.0.1\"}, {\"status\": \"affected\", \"version\": \"Oracle GraalVM Enterprise Edition:20.3.2\"}, {\"status\": \"affected\", \"version\": \"Oracle GraalVM Enterprise Edition:21.1.0\"}]}], \"references\": [{\"url\": \"https://www.oracle.com/security-alerts/cpujul2021.html\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4946\", \"name\": \"DSA-4946\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/\", \"name\": \"FEDORA-2021-d20d6712bc\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/\", \"name\": \"FEDORA-2021-ade03666c0\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/\", \"name\": \"FEDORA-2021-e6b0792d75\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/\", \"name\": \"FEDORA-2021-4581ccb97d\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html\", \"name\": \"[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210723-0002/\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://security.gentoo.org/glsa/202209-05\", \"name\": \"GLSA-202209-05\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data.\"}]}], \"providerMetadata\": {\"orgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"shortName\": \"oracle\", \"dateUpdated\": \"2022-09-07T04:06:46.000Z\"}, \"x_legacyV4Record\": {\"impact\": {\"cvss\": {\"version\": \"3.1\", \"baseScore\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N\"}}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"Java SE:7u301\", \"version_affected\": \"=\"}, {\"version_value\": \"Java SE:8u291\", \"version_affected\": \"=\"}, {\"version_value\": \"Java SE:11.0.11\", \"version_affected\": \"=\"}, {\"version_value\": \"Java SE:16.0.1\", \"version_affected\": \"=\"}, {\"version_value\": \"Oracle GraalVM Enterprise Edition:20.3.2\", \"version_affected\": \"=\"}, {\"version_value\": \"Oracle GraalVM Enterprise Edition:21.1.0\", \"version_affected\": \"=\"}]}, \"product_name\": \"Java SE JDK and JRE\"}]}, \"vendor_name\": \"Oracle Corporation\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://www.oracle.com/security-alerts/cpujul2021.html\", \"name\": \"https://www.oracle.com/security-alerts/cpujul2021.html\", \"refsource\": \"MISC\"}, {\"url\": \"https://www.debian.org/security/2021/dsa-4946\", \"name\": \"DSA-4946\", \"refsource\": \"DEBIAN\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/\", \"name\": \"FEDORA-2021-d20d6712bc\", \"refsource\": \"FEDORA\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/\", \"name\": \"FEDORA-2021-ade03666c0\", \"refsource\": \"FEDORA\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/\", \"name\": \"FEDORA-2021-e6b0792d75\", \"refsource\": \"FEDORA\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/\", \"name\": \"FEDORA-2021-4581ccb97d\", \"refsource\": \"FEDORA\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html\", \"name\": \"[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update\", \"refsource\": \"MLIST\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"name\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"refsource\": \"MISC\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210723-0002/\", \"name\": \"https://security.netapp.com/advisory/ntap-20210723-0002/\", \"refsource\": \"CONFIRM\"}, {\"url\": \"https://security.gentoo.org/glsa/202209-05\", \"name\": \"GLSA-202209-05\", \"refsource\": \"GENTOO\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data.\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2021-2341\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"secalert_us@oracle.com\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2021-2341\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-09-26T14:04:53.949Z\", \"dateReserved\": \"2020-12-09T00:00:00.000Z\", \"assignerOrgId\": \"43595867-4340-4103-b7a2-9a5208d29a85\", \"datePublished\": \"2021-07-20T22:43:20.000Z\", \"assignerShortName\": \"oracle\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2025-AVI-0969
Vulnerability from certfr_avis - Published: 2025-11-06 - Updated: 2025-11-06
De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| VMware | Tanzu Kubernetes Runtime | GenAI sur Tanzu Platform pour Cloud Foundry versions antérieures à 10.2.5 | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry versions antérieures à 6.0.20+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Noble) versions antérieures à 1.90.x | ||
| VMware | Tanzu Kubernetes Runtime | NodeJS Buildpack versions antérieures à 1.8.58 | ||
| VMware | Tanzu Kubernetes Runtime | Python Buildpack versions antérieures à 1.8.63 | ||
| VMware | Tanzu Kubernetes Runtime | VMware Tanzu pour MySQL sur Tanzu Platform versions antérieures à 10.1.0 | ||
| VMware | Tanzu Kubernetes Runtime | API Gateway pour VMware Tanzu Platform versions antérieures à 2.4.0 | ||
| VMware | Tanzu Kubernetes Runtime | PHP Buildpack versions antérieures à 4.6.49 | ||
| VMware | Tanzu Kubernetes Runtime | Single Sign-On pour VMware Tanzu Platform versions antérieures à 1.16.14 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy FIPS) versions antérieures à 1.915.x | ||
| VMware | Tanzu Application Service | CredHub Service Broker versions antérieures à 1.6.6 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy FIPS) versions antérieures à 1.943.x | ||
| VMware | Tanzu Kubernetes Runtime | Elastic Application Runtime Windows add-on pour VMware Tanzu Platform versions antérieures à 10.2.4+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry Windows versions antérieures à 6.0.20+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy) versions antérieures à 1.915.x | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry Windows versions antérieures à 10.2.3+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Single Sign-On pour VMware Tanzu Application Service versions antérieures à 1.16.13 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy) versions antérieures à 1.943.x | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry isolation segment versions antérieures à 6.0.20+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Noble) versions antérieures à 1.77.x | ||
| VMware | Services Suite | Platform Automation Toolkit versions antérieures à 5.3.2 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy Azure Light) versions antérieures à 1.906.x | ||
| VMware | Tanzu Kubernetes Runtime | Spring Cloud Data Flow pour VMware Tanzu versions antérieures à 1.14.9 | ||
| VMware | Tanzu Kubernetes Runtime | App Autoscaler CLI Plugin pour VMware Tanzu Platform versions antérieures à 250.5.9 | ||
| VMware | Tanzu Kubernetes Runtime | Spring Cloud Services pour VMware Tanzu versions antérieures à 3.3.10 | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry versions antérieures à 10.2.3+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Concourse pour VMware Tanzu versions antérieures à 7.14.1+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Platform pour Cloud Foundry isolation segment versions antérieures à 10.2.3+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Platform Services pour VMware Tanzu Platform versions antérieures à 10.3.0 | ||
| VMware | Tanzu Kubernetes Runtime | Ruby Buildpack versions antérieures à 1.10.46 | ||
| VMware | Tanzu Kubernetes Runtime | Elastic Application Runtime pour VMware Tanzu Platform versions antérieures à 6.0.21+LTS-T | ||
| VMware | Tanzu Kubernetes Runtime | Telemetry pour VMware Tanzu Platform versions antérieures à 2.3.0 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Noble) versions antérieures à 1.103.x | ||
| VMware | Tanzu Kubernetes Runtime | Tanzu Hub versions antérieures à 10.3.0 | ||
| VMware | Tanzu Kubernetes Runtime | Stemcells (Ubuntu Jammy) versions antérieures à 1.906.x |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "GenAI sur Tanzu Platform pour Cloud Foundry versions ant\u00e9rieures \u00e0 10.2.5",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry versions ant\u00e9rieures \u00e0 6.0.20+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Noble) versions ant\u00e9rieures \u00e0 1.90.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "NodeJS Buildpack versions ant\u00e9rieures \u00e0 1.8.58",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Python Buildpack versions ant\u00e9rieures \u00e0 1.8.63",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Tanzu pour MySQL sur Tanzu Platform versions ant\u00e9rieures \u00e0 10.1.0",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "API Gateway pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 2.4.0",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "PHP Buildpack versions ant\u00e9rieures \u00e0 4.6.49",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Single Sign-On pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 1.16.14",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy FIPS) versions ant\u00e9rieures \u00e0 1.915.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "CredHub Service Broker versions ant\u00e9rieures \u00e0 1.6.6",
"product": {
"name": "Tanzu Application Service",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy FIPS) versions ant\u00e9rieures \u00e0 1.943.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Elastic Application Runtime Windows add-on pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 10.2.4+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry Windows versions ant\u00e9rieures \u00e0 6.0.20+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy) versions ant\u00e9rieures \u00e0 1.915.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry Windows versions ant\u00e9rieures \u00e0 10.2.3+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Single Sign-On pour VMware Tanzu Application Service versions ant\u00e9rieures \u00e0 1.16.13",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy) versions ant\u00e9rieures \u00e0 1.943.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 6.0.20+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Noble) versions ant\u00e9rieures \u00e0 1.77.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Platform Automation Toolkit versions ant\u00e9rieures \u00e0 5.3.2",
"product": {
"name": "Services Suite",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy Azure Light) versions ant\u00e9rieures \u00e0 1.906.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Spring Cloud Data Flow pour VMware Tanzu versions ant\u00e9rieures \u00e0 1.14.9",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "App Autoscaler CLI Plugin pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 250.5.9",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Spring Cloud Services pour VMware Tanzu versions ant\u00e9rieures \u00e0 3.3.10",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry versions ant\u00e9rieures \u00e0 10.2.3+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Concourse pour VMware Tanzu versions ant\u00e9rieures \u00e0 7.14.1+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform pour Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 10.2.3+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Platform Services pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 10.3.0",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Ruby Buildpack versions ant\u00e9rieures \u00e0 1.10.46",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Elastic Application Runtime pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 6.0.21+LTS-T",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Telemetry pour VMware Tanzu Platform versions ant\u00e9rieures \u00e0 2.3.0",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Noble) versions ant\u00e9rieures \u00e0 1.103.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Hub versions ant\u00e9rieures \u00e0 10.3.0",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells (Ubuntu Jammy) versions ant\u00e9rieures \u00e0 1.906.x",
"product": {
"name": "Tanzu Kubernetes Runtime",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2006-3082",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-3082"
},
{
"name": "CVE-2013-2064",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2064"
},
{
"name": "CVE-2014-8140",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8140"
},
{
"name": "CVE-2014-8139",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8139"
},
{
"name": "CVE-2014-8141",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8141"
},
{
"name": "CVE-2015-4779",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4779"
},
{
"name": "CVE-2015-4780",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4780"
},
{
"name": "CVE-2015-4787",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4787"
},
{
"name": "CVE-2015-4790",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4790"
},
{
"name": "CVE-2015-4778",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4778"
},
{
"name": "CVE-2015-4782",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4782"
},
{
"name": "CVE-2015-4789",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4789"
},
{
"name": "CVE-2015-4764",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4764"
},
{
"name": "CVE-2015-4783",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4783"
},
{
"name": "CVE-2015-2583",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2583"
},
{
"name": "CVE-2015-4781",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4781"
},
{
"name": "CVE-2015-4776",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4776"
},
{
"name": "CVE-2015-4786",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4786"
},
{
"name": "CVE-2015-2656",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2656"
},
{
"name": "CVE-2015-4788",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4788"
},
{
"name": "CVE-2015-4785",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4785"
},
{
"name": "CVE-2015-4754",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4754"
},
{
"name": "CVE-2015-4775",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4775"
},
{
"name": "CVE-2015-4777",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4777"
},
{
"name": "CVE-2015-2640",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2640"
},
{
"name": "CVE-2015-4774",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4774"
},
{
"name": "CVE-2015-2626",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2626"
},
{
"name": "CVE-2015-2624",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2624"
},
{
"name": "CVE-2015-4784",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4784"
},
{
"name": "CVE-2015-2654",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2654"
},
{
"name": "CVE-2017-7244",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7244"
},
{
"name": "CVE-2017-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6004"
},
{
"name": "CVE-2017-7186",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7186"
},
{
"name": "CVE-2017-7246",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7246"
},
{
"name": "CVE-2018-10919",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10919"
},
{
"name": "CVE-2020-2754",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2754"
},
{
"name": "CVE-2020-2756",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2756"
},
{
"name": "CVE-2020-2805",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2805"
},
{
"name": "CVE-2020-2830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2830"
},
{
"name": "CVE-2020-2757",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2757"
},
{
"name": "CVE-2020-2800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2800"
},
{
"name": "CVE-2020-2803",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2803"
},
{
"name": "CVE-2020-2755",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2755"
},
{
"name": "CVE-2020-2781",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2781"
},
{
"name": "CVE-2020-2773",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2773"
},
{
"name": "CVE-2019-13136",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13136"
},
{
"name": "CVE-2020-14579",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14579"
},
{
"name": "CVE-2020-14577",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14577"
},
{
"name": "CVE-2020-14578",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14578"
},
{
"name": "CVE-2020-14621",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14621"
},
{
"name": "CVE-2020-14583",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14583"
},
{
"name": "CVE-2020-14581",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14581"
},
{
"name": "CVE-2020-14664",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14664"
},
{
"name": "CVE-2020-14593",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14593"
},
{
"name": "CVE-2020-14556",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14556"
},
{
"name": "CVE-2019-19906",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19906"
},
{
"name": "CVE-2019-12900",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12900"
},
{
"name": "CVE-2020-14796",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14796"
},
{
"name": "CVE-2020-14803",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14803"
},
{
"name": "CVE-2020-14792",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14792"
},
{
"name": "CVE-2020-14779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14779"
},
{
"name": "CVE-2020-14798",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14798"
},
{
"name": "CVE-2020-14797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14797"
},
{
"name": "CVE-2020-14781",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14781"
},
{
"name": "CVE-2020-14782",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14782"
},
{
"name": "CVE-2020-14155",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14155"
},
{
"name": "CVE-2019-20838",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20838"
},
{
"name": "CVE-2019-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25013"
},
{
"name": "CVE-2020-28196",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28196"
},
{
"name": "CVE-2021-2161",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2161"
},
{
"name": "CVE-2021-2163",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2163"
},
{
"name": "CVE-2021-25217",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25217"
},
{
"name": "CVE-2019-13232",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13232"
},
{
"name": "CVE-2021-0561",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0561"
},
{
"name": "CVE-2021-29921",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29921"
},
{
"name": "CVE-2014-3577",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3577"
},
{
"name": "CVE-2012-6153",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-6153"
},
{
"name": "CVE-2015-5262",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-5262"
},
{
"name": "CVE-2020-8908",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8908"
},
{
"name": "CVE-2021-2388",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2388"
},
{
"name": "CVE-2021-2341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2341"
},
{
"name": "CVE-2021-2369",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2369"
},
{
"name": "CVE-2020-10029",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10029"
},
{
"name": "CVE-2013-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0340"
},
{
"name": "CVE-2019-18276",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18276"
},
{
"name": "CVE-2021-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3520"
},
{
"name": "CVE-2021-3421",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3421"
},
{
"name": "CVE-2021-3326",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3326"
},
{
"name": "CVE-2019-2708",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2708"
},
{
"name": "CVE-2020-27618",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27618"
},
{
"name": "CVE-2021-36222",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36222"
},
{
"name": "CVE-2021-35603",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35603"
},
{
"name": "CVE-2021-35560",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35560"
},
{
"name": "CVE-2021-35586",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35586"
},
{
"name": "CVE-2021-35559",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35559"
},
{
"name": "CVE-2021-35567",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35567"
},
{
"name": "CVE-2021-35578",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35578"
},
{
"name": "CVE-2021-35550",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35550"
},
{
"name": "CVE-2021-35561",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35561"
},
{
"name": "CVE-2021-35565",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35565"
},
{
"name": "CVE-2021-35588",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35588"
},
{
"name": "CVE-2021-35564",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35564"
},
{
"name": "CVE-2021-35556",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35556"
},
{
"name": "CVE-2021-43527",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43527"
},
{
"name": "CVE-2021-44717",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44717"
},
{
"name": "CVE-2021-36221",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36221"
},
{
"name": "CVE-2021-29923",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29923"
},
{
"name": "CVE-2021-34558",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34558"
},
{
"name": "CVE-2021-36976",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36976"
},
{
"name": "CVE-2022-21349",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21349"
},
{
"name": "CVE-2022-21291",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21291"
},
{
"name": "CVE-2022-21340",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21340"
},
{
"name": "CVE-2022-21282",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21282"
},
{
"name": "CVE-2022-21271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21271"
},
{
"name": "CVE-2022-21341",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21341"
},
{
"name": "CVE-2022-21365",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21365"
},
{
"name": "CVE-2022-21305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21305"
},
{
"name": "CVE-2022-21366",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21366"
},
{
"name": "CVE-2022-21360",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21360"
},
{
"name": "CVE-2022-21296",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21296"
},
{
"name": "CVE-2022-21293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21293"
},
{
"name": "CVE-2022-21248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21248"
},
{
"name": "CVE-2022-21299",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21299"
},
{
"name": "CVE-2022-21294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21294"
},
{
"name": "CVE-2022-21283",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21283"
},
{
"name": "CVE-2021-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3737"
},
{
"name": "CVE-2021-44716",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44716"
},
{
"name": "CVE-2021-3733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3733"
},
{
"name": "CVE-2021-41772",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41772"
},
{
"name": "CVE-2021-41771",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41771"
},
{
"name": "CVE-2022-37967",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37967"
},
{
"name": "CVE-2022-45061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45061"
},
{
"name": "CVE-2022-40674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40674"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2022-37434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37434"
},
{
"name": "CVE-2022-2309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2309"
},
{
"name": "CVE-2022-43680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43680"
},
{
"name": "CVE-2022-29824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29824"
},
{
"name": "CVE-2022-23308",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23308"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2022-40303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40303"
},
{
"name": "CVE-2022-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40304"
},
{
"name": "CVE-2022-21476",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21476"
},
{
"name": "CVE-2022-42898",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42898"
},
{
"name": "CVE-2022-30633",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30633"
},
{
"name": "CVE-2022-1705",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1705"
},
{
"name": "CVE-2022-27664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27664"
},
{
"name": "CVE-2022-28131",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28131"
},
{
"name": "CVE-2022-32148",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32148"
},
{
"name": "CVE-2022-32189",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32189"
},
{
"name": "CVE-2022-1962",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1962"
},
{
"name": "CVE-2022-30635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30635"
},
{
"name": "CVE-2022-30631",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30631"
},
{
"name": "CVE-2022-30632",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30632"
},
{
"name": "CVE-2022-30630",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30630"
},
{
"name": "CVE-2022-0696",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0696"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2022-0714",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0714"
},
{
"name": "CVE-2022-29526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29526"
},
{
"name": "CVE-2022-34903",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34903"
},
{
"name": "CVE-2022-3515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3515"
},
{
"name": "CVE-2022-32205",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32205"
},
{
"name": "CVE-2022-32206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32206"
},
{
"name": "CVE-2018-25032",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25032"
},
{
"name": "CVE-2022-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3996"
},
{
"name": "CVE-2022-22942",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22942"
},
{
"name": "CVE-2022-23773",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23773"
},
{
"name": "CVE-2022-0391",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0391"
},
{
"name": "CVE-2022-23772",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23772"
},
{
"name": "CVE-2022-23806",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23806"
},
{
"name": "CVE-2022-0158",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0158"
},
{
"name": "CVE-2022-0156",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0156"
},
{
"name": "CVE-2018-11813",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11813"
},
{
"name": "CVE-2018-1000075",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000075"
},
{
"name": "CVE-2018-18384",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18384"
},
{
"name": "CVE-2019-8325",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8325"
},
{
"name": "CVE-2019-8322",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8322"
},
{
"name": "CVE-2018-1000073",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000073"
},
{
"name": "CVE-2018-1000079",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000079"
},
{
"name": "CVE-2019-8324",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8324"
},
{
"name": "CVE-2018-1000076",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000076"
},
{
"name": "CVE-2018-1000074",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000074"
},
{
"name": "CVE-2018-1000078",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000078"
},
{
"name": "CVE-2018-1000077",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000077"
},
{
"name": "CVE-2019-1010238",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1010238"
},
{
"name": "CVE-2019-8323",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8323"
},
{
"name": "CVE-2022-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0351"
},
{
"name": "CVE-2022-0319",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0319"
},
{
"name": "CVE-2022-21434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21434"
},
{
"name": "CVE-2022-21443",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21443"
},
{
"name": "CVE-2022-21496",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21496"
},
{
"name": "CVE-2022-21426",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21426"
},
{
"name": "CVE-2021-20266",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20266"
},
{
"name": "CVE-2022-24921",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24921"
},
{
"name": "CVE-2022-1434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1434"
},
{
"name": "CVE-2022-1292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
},
{
"name": "CVE-2022-1343",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1343"
},
{
"name": "CVE-2022-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1473"
},
{
"name": "CVE-2022-0530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0530"
},
{
"name": "CVE-2021-3521",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3521"
},
{
"name": "CVE-2021-39293",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39293"
},
{
"name": "CVE-2022-27774",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27774"
},
{
"name": "CVE-2022-27775",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27775"
},
{
"name": "CVE-2022-22576",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22576"
},
{
"name": "CVE-2022-27776",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27776"
},
{
"name": "CVE-2022-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
},
{
"name": "CVE-2022-2097",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2097"
},
{
"name": "CVE-2022-24407",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24407"
},
{
"name": "CVE-2017-7500",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7500"
},
{
"name": "CVE-2021-33574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33574"
},
{
"name": "CVE-2017-11164",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11164"
},
{
"name": "CVE-2021-37750",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37750"
},
{
"name": "CVE-2022-21541",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21541"
},
{
"name": "CVE-2022-34169",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34169"
},
{
"name": "CVE-2022-21540",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21540"
},
{
"name": "CVE-2022-24070",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24070"
},
{
"name": "CVE-2021-28544",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28544"
},
{
"name": "CVE-2021-31566",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31566"
},
{
"name": "CVE-2021-23177",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23177"
},
{
"name": "CVE-2021-3999",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3999"
},
{
"name": "CVE-2022-23218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23218"
},
{
"name": "CVE-2022-23219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23219"
},
{
"name": "CVE-2022-28327",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28327"
},
{
"name": "CVE-2022-24675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24675"
},
{
"name": "CVE-2022-27782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27782"
},
{
"name": "CVE-2022-38476",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38476"
},
{
"name": "CVE-2022-26488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26488"
},
{
"name": "CVE-2022-32208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32208"
},
{
"name": "CVE-2022-27781",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27781"
},
{
"name": "CVE-2022-32207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32207"
},
{
"name": "CVE-2022-3358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3358"
},
{
"name": "CVE-2022-1271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1271"
},
{
"name": "CVE-2021-4189",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4189"
},
{
"name": "CVE-2012-5783",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5783"
},
{
"name": "CVE-2022-1587",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1587"
},
{
"name": "CVE-2022-21626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21626"
},
{
"name": "CVE-2022-21619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21619"
},
{
"name": "CVE-2022-21628",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21628"
},
{
"name": "CVE-2022-21624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21624"
},
{
"name": "CVE-2022-1725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1725"
},
{
"name": "CVE-2022-29458",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29458"
},
{
"name": "CVE-2022-28739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28739"
},
{
"name": "CVE-2022-1897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1897"
},
{
"name": "CVE-2022-1420",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1420"
},
{
"name": "CVE-2021-39537",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39537"
},
{
"name": "CVE-2022-1674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1674"
},
{
"name": "CVE-2022-1622",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1622"
},
{
"name": "CVE-2022-37454",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37454"
},
{
"name": "CVE-2023-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21830"
},
{
"name": "CVE-2023-21843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21843"
},
{
"name": "CVE-2020-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10735"
},
{
"name": "CVE-2022-32221",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32221"
},
{
"name": "CVE-2022-42916",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42916"
},
{
"name": "CVE-2022-35252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35252"
},
{
"name": "CVE-2022-42915",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42915"
},
{
"name": "CVE-2022-43551",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43551"
},
{
"name": "CVE-2022-43552",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43552"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2022-4304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4304"
},
{
"name": "CVE-2022-4203",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4203"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-0401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0401"
},
{
"name": "CVE-2023-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0215"
},
{
"name": "CVE-2023-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0217"
},
{
"name": "CVE-2023-0216",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0216"
},
{
"name": "CVE-2022-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4450"
},
{
"name": "CVE-2023-0767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0767"
},
{
"name": "CVE-2015-20107",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-20107"
},
{
"name": "CVE-2022-1586",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1586"
},
{
"name": "CVE-2022-25147",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25147"
},
{
"name": "CVE-2022-45873",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45873"
},
{
"name": "CVE-2022-4415",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4415"
},
{
"name": "CVE-2022-3821",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3821"
},
{
"name": "CVE-2023-23915",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23915"
},
{
"name": "CVE-2023-23914",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23914"
},
{
"name": "CVE-2023-23916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23916"
},
{
"name": "CVE-2022-1304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1304"
},
{
"name": "CVE-2023-24329",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24329"
},
{
"name": "CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"name": "CVE-2022-41717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41717"
},
{
"name": "CVE-2023-0464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0464"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2022-41716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41716"
},
{
"name": "CVE-2023-0466",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0466"
},
{
"name": "CVE-2023-0465",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0465"
},
{
"name": "CVE-2023-0614",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0614"
},
{
"name": "CVE-2022-32743",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32743"
},
{
"name": "CVE-2023-0922",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0922"
},
{
"name": "CVE-2022-30629",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30629"
},
{
"name": "CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"name": "CVE-2022-41722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41722"
},
{
"name": "CVE-2022-30580",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30580"
},
{
"name": "CVE-2022-41720",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41720"
},
{
"name": "CVE-2022-41725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41725"
},
{
"name": "CVE-2022-41724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41724"
},
{
"name": "CVE-2021-46828",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46828"
},
{
"name": "CVE-2021-33621",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33621"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-24532",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24532"
},
{
"name": "CVE-2023-24537",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24537"
},
{
"name": "CVE-2023-29469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29469"
},
{
"name": "CVE-2023-28484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28484"
},
{
"name": "CVE-2023-20873",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20873"
},
{
"name": "CVE-2023-20883",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20883"
},
{
"name": "CVE-2023-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2650"
},
{
"name": "CVE-2023-27535",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27535"
},
{
"name": "CVE-2022-25858",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25858"
},
{
"name": "CVE-2022-30634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30634"
},
{
"name": "CVE-2022-36227",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36227"
},
{
"name": "CVE-2023-27533",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27533"
},
{
"name": "CVE-2023-27538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27538"
},
{
"name": "CVE-2023-27534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27534"
},
{
"name": "CVE-2023-27536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27536"
},
{
"name": "CVE-2022-27780",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27780"
},
{
"name": "CVE-2022-29804",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29804"
},
{
"name": "CVE-2023-27537",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27537"
},
{
"name": "CVE-2020-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1752"
},
{
"name": "CVE-2021-35942",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35942"
},
{
"name": "CVE-2021-38604",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38604"
},
{
"name": "CVE-2020-29562",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29562"
},
{
"name": "CVE-2021-27645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27645"
},
{
"name": "CVE-2023-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24536"
},
{
"name": "CVE-2023-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24538"
},
{
"name": "CVE-2023-1255",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1255"
},
{
"name": "CVE-2016-3189",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3189"
},
{
"name": "CVE-2021-45346",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45346"
},
{
"name": "CVE-2023-28322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28322"
},
{
"name": "CVE-2022-46908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46908"
},
{
"name": "CVE-2023-28320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28320"
},
{
"name": "CVE-2023-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28321"
},
{
"name": "CVE-2023-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
},
{
"name": "CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"name": "CVE-2023-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24539"
},
{
"name": "CVE-2021-28861",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28861"
},
{
"name": "CVE-2023-2975",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2975"
},
{
"name": "CVE-2023-22049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22049"
},
{
"name": "CVE-2023-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25193"
},
{
"name": "CVE-2023-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22045"
},
{
"name": "CVE-2022-4899",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4899"
},
{
"name": "CVE-2023-0361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0361"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2023-28319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28319"
},
{
"name": "CVE-2023-34967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34967"
},
{
"name": "CVE-2023-34968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34968"
},
{
"name": "CVE-2023-3817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3817"
},
{
"name": "CVE-2023-29404",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29404"
},
{
"name": "CVE-2023-29402",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29402"
},
{
"name": "CVE-2023-29403",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29403"
},
{
"name": "CVE-2023-29405",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29405"
},
{
"name": "CVE-2023-2283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2283"
},
{
"name": "CVE-2023-1667",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1667"
},
{
"name": "CVE-2023-2976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2976"
},
{
"name": "CVE-2021-38297",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38297"
},
{
"name": "CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"name": "CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"name": "CVE-2023-40403",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40403"
},
{
"name": "CVE-2023-4911",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4911"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2023-4091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4091"
},
{
"name": "CVE-2023-42670",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42670"
},
{
"name": "CVE-2023-4154",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4154"
},
{
"name": "CVE-2023-42669",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42669"
},
{
"name": "CVE-2016-1000027",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1000027"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2023-38039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38039"
},
{
"name": "CVE-2023-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22081"
},
{
"name": "CVE-2023-22025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22025"
},
{
"name": "CVE-2023-22067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22067"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2023-38545",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38545"
},
{
"name": "CVE-2023-5363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5363"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30774"
},
{
"name": "CVE-2023-45853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45853"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2022-1615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1615"
},
{
"name": "CVE-2020-22218",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-22218"
},
{
"name": "CVE-2023-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2603"
},
{
"name": "CVE-2023-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2602"
},
{
"name": "CVE-2023-4527",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4527"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2022-48303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48303"
},
{
"name": "CVE-2021-3426",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3426"
},
{
"name": "CVE-2023-34055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34055"
},
{
"name": "CVE-2022-41409",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41409"
},
{
"name": "CVE-2022-0563",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0563"
},
{
"name": "CVE-2023-32643",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32643"
},
{
"name": "CVE-2023-4039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4039"
},
{
"name": "CVE-2022-2509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2509"
},
{
"name": "CVE-2022-3715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3715"
},
{
"name": "CVE-2023-0687",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0687"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2022-48522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48522"
},
{
"name": "CVE-2023-29491",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29491"
},
{
"name": "CVE-2023-35945",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35945"
},
{
"name": "CVE-2023-32665",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32665"
},
{
"name": "CVE-2023-39615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39615"
},
{
"name": "CVE-2021-37600",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37600"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2021-3997",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3997"
},
{
"name": "CVE-2021-33294",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33294"
},
{
"name": "CVE-2021-43618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43618"
},
{
"name": "CVE-2023-45322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45322"
},
{
"name": "CVE-2023-29499",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29499"
},
{
"name": "CVE-2022-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28321"
},
{
"name": "CVE-2021-32292",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32292"
},
{
"name": "CVE-2023-4016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4016"
},
{
"name": "CVE-2013-4235",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4235"
},
{
"name": "CVE-2023-34969",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34969"
},
{
"name": "CVE-2023-32611",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32611"
},
{
"name": "CVE-2023-29383",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29383"
},
{
"name": "CVE-2023-5981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5981"
},
{
"name": "CVE-2023-32636",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32636"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2023-51384",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51384"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2024-20696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20696"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2024-20945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
},
{
"name": "CVE-2024-20919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
},
{
"name": "CVE-2024-20926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
},
{
"name": "CVE-2024-20921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
},
{
"name": "CVE-2023-39323",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39323"
},
{
"name": "CVE-2024-0743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0743"
},
{
"name": "CVE-2024-0746",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0746"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2021-4048",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4048"
},
{
"name": "CVE-2023-36054",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36054"
},
{
"name": "CVE-2023-28487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28487"
},
{
"name": "CVE-2023-30086",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30086"
},
{
"name": "CVE-2023-26965",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26965"
},
{
"name": "CVE-2022-42919",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42919"
},
{
"name": "CVE-2023-3316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3316"
},
{
"name": "CVE-2023-28486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28486"
},
{
"name": "CVE-2022-28738",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28738"
},
{
"name": "CVE-2023-50868",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
},
{
"name": "CVE-2023-2804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2804"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24534"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2023-46218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46218"
},
{
"name": "CVE-2023-46219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46219"
},
{
"name": "CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"name": "CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"name": "CVE-2024-0727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
},
{
"name": "CVE-2024-25126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25126"
},
{
"name": "CVE-2024-26141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26141"
},
{
"name": "CVE-2024-26146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26146"
},
{
"name": "CVE-2023-47038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47038"
},
{
"name": "CVE-2022-48554",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48554"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2024-24762",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24762"
},
{
"name": "CVE-2023-52593",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52593"
},
{
"name": "CVE-2023-5388",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5388"
},
{
"name": "CVE-2022-2127",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2127"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2023-6481",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6481"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2024-28085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28085"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2024-26256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26256"
},
{
"name": "CVE-2020-22916",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-22916"
},
{
"name": "CVE-2016-2781",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2781"
},
{
"name": "CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2017-7501",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7501"
},
{
"name": "CVE-2021-35939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35939"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2021-35938",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35938"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2021-35937",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35937"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2023-52426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52426"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-21068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21068"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2024-26775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26775"
},
{
"name": "CVE-2024-26726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26726"
},
{
"name": "CVE-2024-26700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26700"
},
{
"name": "CVE-2023-39326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39326"
},
{
"name": "CVE-2023-45283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45283"
},
{
"name": "CVE-2023-45285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45285"
},
{
"name": "CVE-2023-45284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45284"
},
{
"name": "CVE-2007-4559",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4559"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2023-47282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47282"
},
{
"name": "CVE-2023-47169",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47169"
},
{
"name": "CVE-2023-48368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48368"
},
{
"name": "CVE-2023-22656",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22656"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2023-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6378"
},
{
"name": "CVE-2023-31486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31486"
},
{
"name": "CVE-2022-48703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48703"
},
{
"name": "CVE-2024-26896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26896"
},
{
"name": "CVE-2018-14628",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14628"
},
{
"name": "CVE-2023-38037",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38037"
},
{
"name": "CVE-2023-45289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45289"
},
{
"name": "CVE-2023-45290",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45290"
},
{
"name": "CVE-2024-24783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24783"
},
{
"name": "CVE-2024-24784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24784"
},
{
"name": "CVE-2024-24785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24785"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2025-38727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38727"
},
{
"name": "CVE-2025-38237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38237"
},
{
"name": "CVE-2025-38514",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38514"
},
{
"name": "CVE-2025-38542",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38542"
},
{
"name": "CVE-2025-38569",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38569"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2025-9231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9231"
},
{
"name": "CVE-2025-41244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41244"
},
{
"name": "CVE-2025-9230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9230"
},
{
"name": "CVE-2025-9232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9232"
},
{
"name": "CVE-2025-61984",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61984"
},
{
"name": "CVE-2025-8291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8291"
},
{
"name": "CVE-2025-55248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55248"
},
{
"name": "CVE-2024-28757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28757"
},
{
"name": "CVE-2025-58754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58754"
},
{
"name": "CVE-2025-55315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55315"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2025-9640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9640"
},
{
"name": "CVE-2021-36770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36770"
},
{
"name": "CVE-2023-5752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5752"
},
{
"name": "CVE-2024-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2004"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-0397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0397"
},
{
"name": "CVE-2024-4030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4030"
},
{
"name": "CVE-2024-4032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4032"
},
{
"name": "CVE-2024-5642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5642"
},
{
"name": "CVE-2024-34750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34750"
},
{
"name": "CVE-2024-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3596"
},
{
"name": "CVE-2025-41254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41254"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2022-1771",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1771"
},
{
"name": "CVE-2023-46246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46246"
},
{
"name": "CVE-2023-48231",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48231"
},
{
"name": "CVE-2023-48232",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48232"
},
{
"name": "CVE-2023-48233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48233"
},
{
"name": "CVE-2023-48234",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48234"
},
{
"name": "CVE-2023-48235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48235"
},
{
"name": "CVE-2023-48236",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48236"
},
{
"name": "CVE-2023-48237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48237"
},
{
"name": "CVE-2023-48706",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48706"
},
{
"name": "CVE-2023-4641",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4641"
},
{
"name": "CVE-2023-50495",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50495"
},
{
"name": "CVE-2023-5341",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5341"
},
{
"name": "CVE-2024-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0567"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2023-46045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46045"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-21138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21138"
},
{
"name": "CVE-2024-21140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21140"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2024-21145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21145"
},
{
"name": "CVE-2024-21147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21147"
},
{
"name": "CVE-2018-13440",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13440"
},
{
"name": "CVE-2019-13147",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13147"
},
{
"name": "CVE-2022-24599",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24599"
},
{
"name": "CVE-2024-28835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28835"
},
{
"name": "CVE-2021-35452",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35452"
},
{
"name": "CVE-2021-36408",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36408"
},
{
"name": "CVE-2021-36410",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36410"
},
{
"name": "CVE-2021-36411",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36411"
},
{
"name": "CVE-2022-43235",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43235"
},
{
"name": "CVE-2022-43236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43236"
},
{
"name": "CVE-2022-43237",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43237"
},
{
"name": "CVE-2022-43238",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43238"
},
{
"name": "CVE-2022-43239",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43239"
},
{
"name": "CVE-2022-43240",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43240"
},
{
"name": "CVE-2022-43241",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43241"
},
{
"name": "CVE-2022-43242",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43242"
},
{
"name": "CVE-2022-43243",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43243"
},
{
"name": "CVE-2022-43244",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43244"
},
{
"name": "CVE-2022-43245",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43245"
},
{
"name": "CVE-2022-43248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43248"
},
{
"name": "CVE-2022-43249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43249"
},
{
"name": "CVE-2022-43250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43250"
},
{
"name": "CVE-2022-43252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43252"
},
{
"name": "CVE-2022-43253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43253"
},
{
"name": "CVE-2023-24751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24751"
},
{
"name": "CVE-2023-24752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24752"
},
{
"name": "CVE-2023-24754",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24754"
},
{
"name": "CVE-2023-24755",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24755"
},
{
"name": "CVE-2023-24756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24756"
},
{
"name": "CVE-2023-24757",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24757"
},
{
"name": "CVE-2023-24758",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24758"
},
{
"name": "CVE-2023-6228",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6228"
},
{
"name": "CVE-2023-6277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6277"
},
{
"name": "CVE-2024-6923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6923"
},
{
"name": "CVE-2024-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3219"
},
{
"name": "CVE-2023-45287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45287"
},
{
"name": "CVE-2023-51767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51767"
},
{
"name": "CVE-2024-24787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24787"
},
{
"name": "CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"name": "CVE-2025-55551",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55551"
},
{
"name": "CVE-2025-55552",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55552"
},
{
"name": "CVE-2025-55554",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55554"
},
{
"name": "CVE-2025-61985",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61985"
},
{
"name": "CVE-2025-40778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40778"
},
{
"name": "CVE-2025-40780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40780"
},
{
"name": "CVE-2025-8677",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8677"
},
{
"name": "CVE-2025-55754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55754"
},
{
"name": "CVE-2025-55752",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55752"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2024-38808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38808"
},
{
"name": "CVE-2024-38809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38809"
},
{
"name": "CVE-2025-58056",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58056"
},
{
"name": "CVE-2025-58057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58057"
},
{
"name": "CVE-2025-47910",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47910"
},
{
"name": "CVE-2025-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8176"
},
{
"name": "CVE-2025-9900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9900"
},
{
"name": "CVE-2025-40025",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40025"
},
{
"name": "CVE-2025-40026",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40026"
},
{
"name": "CVE-2025-40027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40027"
},
{
"name": "CVE-2025-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53057"
},
{
"name": "CVE-2025-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53066"
},
{
"name": "CVE-2025-61748",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61748"
},
{
"name": "CVE-2023-52969",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52969"
},
{
"name": "CVE-2023-52970",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52970"
},
{
"name": "CVE-2024-21510",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21510"
},
{
"name": "CVE-2024-58266",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58266"
},
{
"name": "CVE-2025-46551",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46551"
},
{
"name": "CVE-2025-58767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58767"
},
{
"name": "CVE-2025-59830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59830"
},
{
"name": "CVE-2025-61770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61770"
},
{
"name": "CVE-2025-61771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61771"
},
{
"name": "CVE-2025-61772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61772"
},
{
"name": "CVE-2025-61780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61780"
},
{
"name": "CVE-2025-61919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61919"
},
{
"name": "CVE-2025-61921",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61921"
},
{
"name": "CVE-2025-11411",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11411"
},
{
"name": "CVE-2025-62813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62813"
},
{
"name": "CVE-2025-53040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53040"
},
{
"name": "CVE-2025-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53042"
},
{
"name": "CVE-2025-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53044"
},
{
"name": "CVE-2025-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53045"
},
{
"name": "CVE-2025-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53053"
},
{
"name": "CVE-2025-53054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53054"
},
{
"name": "CVE-2025-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53062"
},
{
"name": "CVE-2025-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53069"
},
{
"name": "CVE-2025-5351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5351"
},
{
"name": "CVE-2025-5987",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5987"
},
{
"name": "CVE-2025-61795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61795"
},
{
"name": "CVE-2025-12380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12380"
},
{
"name": "CVE-2025-11226",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11226"
},
{
"name": "CVE-2025-47906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47906"
},
{
"name": "CVE-2025-54388",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54388"
},
{
"name": "CVE-2023-3164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3164"
},
{
"name": "CVE-2024-1013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1013"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2024-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38428"
},
{
"name": "CVE-2024-38807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38807"
},
{
"name": "CVE-2023-7008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7008"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2018-3779",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3779"
},
{
"name": "CVE-2019-8321",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8321"
},
{
"name": "CVE-2020-15095",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15095"
},
{
"name": "CVE-2021-43809",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43809"
},
{
"name": "CVE-2023-22796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22796"
},
{
"name": "CVE-2023-28120",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28120"
},
{
"name": "CVE-2001-1268",
"url": "https://www.cve.org/CVERecord?id=CVE-2001-1268"
},
{
"name": "CVE-2001-1269",
"url": "https://www.cve.org/CVERecord?id=CVE-2001-1269"
},
{
"name": "CVE-2005-0602",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-0602"
},
{
"name": "CVE-2011-2207",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2207"
},
{
"name": "CVE-2014-9157",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9157"
},
{
"name": "CVE-2014-9636",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9636"
},
{
"name": "CVE-2014-9748",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9748"
},
{
"name": "CVE-2014-9913",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9913"
},
{
"name": "CVE-2015-1606",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-1606"
},
{
"name": "CVE-2015-7696",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7696"
},
{
"name": "CVE-2015-7697",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7697"
},
{
"name": "CVE-2015-7747",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7747"
},
{
"name": "CVE-2015-8863",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8863"
},
{
"name": "CVE-2016-10062",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10062"
},
{
"name": "CVE-2016-20012",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-20012"
},
{
"name": "CVE-2016-5118",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5118"
},
{
"name": "CVE-2016-5841",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5841"
},
{
"name": "CVE-2016-7514",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7514"
},
{
"name": "CVE-2016-7531",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7531"
},
{
"name": "CVE-2016-9844",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-9844"
},
{
"name": "CVE-2017-1000476",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000476"
},
{
"name": "CVE-2017-10928",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10928"
},
{
"name": "CVE-2017-11447",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11447"
},
{
"name": "CVE-2017-12429",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12429"
},
{
"name": "CVE-2017-12433",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12433"
},
{
"name": "CVE-2017-12643",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12643"
},
{
"name": "CVE-2017-12674",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12674"
},
{
"name": "CVE-2017-16231",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16231"
},
{
"name": "CVE-2017-18250",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18250"
},
{
"name": "CVE-2017-18253",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18253"
},
{
"name": "CVE-2017-6829",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6829"
},
{
"name": "CVE-2017-6830",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6830"
},
{
"name": "CVE-2017-6831",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6831"
},
{
"name": "CVE-2017-6832",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6832"
},
{
"name": "CVE-2017-6833",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6833"
},
{
"name": "CVE-2017-6834",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6834"
},
{
"name": "CVE-2017-6835",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6835"
},
{
"name": "CVE-2017-6836",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6836"
},
{
"name": "CVE-2017-6837",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6837"
},
{
"name": "CVE-2017-6838",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6838"
},
{
"name": "CVE-2017-6839",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-6839"
},
{
"name": "CVE-2017-7619",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7619"
},
{
"name": "CVE-2017-9409",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9409"
},
{
"name": "CVE-2018-1000035",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000035"
},
{
"name": "CVE-2018-10804",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10804"
},
{
"name": "CVE-2018-10805",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10805"
},
{
"name": "CVE-2018-11655",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11655"
},
{
"name": "CVE-2018-11656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11656"
},
{
"name": "CVE-2018-12599",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12599"
},
{
"name": "CVE-2018-12600",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12600"
},
{
"name": "CVE-2018-13153",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13153"
},
{
"name": "CVE-2018-13410",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13410"
},
{
"name": "CVE-2018-14434",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14434"
},
{
"name": "CVE-2018-14437",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14437"
},
{
"name": "CVE-2018-15120",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15120"
},
{
"name": "CVE-2018-15607",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15607"
},
{
"name": "CVE-2018-15798",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15798"
},
{
"name": "CVE-2018-16328",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16328"
},
{
"name": "CVE-2018-16329",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16329"
},
{
"name": "CVE-2018-16412",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16412"
},
{
"name": "CVE-2018-16645",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16645"
},
{
"name": "CVE-2018-19876",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19876"
},
{
"name": "CVE-2018-9133",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9133"
},
{
"name": "CVE-2018-9135",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9135"
},
{
"name": "CVE-2019-14844",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14844"
},
{
"name": "CVE-2019-17547",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17547"
},
{
"name": "CVE-2019-3792",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3792"
},
{
"name": "CVE-2019-6293",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6293"
},
{
"name": "CVE-2019-6461",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6461"
},
{
"name": "CVE-2019-6462",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6462"
},
{
"name": "CVE-2019-9904",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9904"
},
{
"name": "CVE-2020-0499",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-0499"
},
{
"name": "CVE-2020-10251",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10251"
},
{
"name": "CVE-2020-14152",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14152"
},
{
"name": "CVE-2020-14153",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14153"
},
{
"name": "CVE-2020-18032",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-18032"
},
{
"name": "CVE-2020-18781",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-18781"
},
{
"name": "CVE-2020-21599",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-21599"
},
{
"name": "CVE-2020-21605",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-21605"
},
{
"name": "CVE-2020-21606",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-21606"
},
{
"name": "CVE-2020-25663",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25663"
},
{
"name": "CVE-2020-27768",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27768"
},
{
"name": "CVE-2020-27769",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27769"
},
{
"name": "CVE-2020-27776",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27776"
},
{
"name": "CVE-2020-27829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27829"
},
{
"name": "CVE-2020-29509",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29509"
},
{
"name": "CVE-2020-29511",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29511"
},
{
"name": "CVE-2020-35492",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35492"
},
{
"name": "CVE-2021-20176",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20176"
},
{
"name": "CVE-2016-4074",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4074"
},
{
"name": "CVE-2021-20241",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20241"
},
{
"name": "CVE-2021-20243",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20243"
},
{
"name": "CVE-2021-20244",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20244"
},
{
"name": "CVE-2021-20245",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20245"
},
{
"name": "CVE-2021-20246",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20246"
},
{
"name": "CVE-2021-20251",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20251"
},
{
"name": "CVE-2021-20309",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20309"
},
{
"name": "CVE-2021-20310",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20310"
},
{
"name": "CVE-2021-20311",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20311"
},
{
"name": "CVE-2021-20312",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20312"
},
{
"name": "CVE-2021-20313",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20313"
},
{
"name": "CVE-2021-23215",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23215"
},
{
"name": "CVE-2021-24031",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-24031"
},
{
"name": "CVE-2021-24032",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-24032"
},
{
"name": "CVE-2021-26260",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26260"
},
{
"name": "CVE-2021-26720",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26720"
},
{
"name": "CVE-2021-26945",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26945"
},
{
"name": "CVE-2021-31879",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31879"
},
{
"name": "CVE-2021-32490",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32490"
},
{
"name": "CVE-2021-32491",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32491"
},
{
"name": "CVE-2021-32492",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32492"
},
{
"name": "CVE-2021-32493",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32493"
},
{
"name": "CVE-2021-3468",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3468"
},
{
"name": "CVE-2021-3500",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3500"
},
{
"name": "CVE-2021-3502",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3502"
},
{
"name": "CVE-2021-3574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3574"
},
{
"name": "CVE-2021-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3596"
},
{
"name": "CVE-2021-3598",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3598"
},
{
"name": "CVE-2021-3605",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3605"
},
{
"name": "CVE-2021-3610",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3610"
},
{
"name": "CVE-2021-3670",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3670"
},
{
"name": "CVE-2021-38115",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38115"
},
{
"name": "CVE-2021-39212",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39212"
},
{
"name": "CVE-2021-3933",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3933"
},
{
"name": "CVE-2021-3941",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3941"
},
{
"name": "CVE-2021-40211",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40211"
},
{
"name": "CVE-2021-40812",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40812"
},
{
"name": "CVE-2021-4214",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4214"
},
{
"name": "CVE-2021-4217",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4217"
},
{
"name": "CVE-2021-4219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4219"
},
{
"name": "CVE-2021-44964",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44964"
},
{
"name": "CVE-2021-45931",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45931"
},
{
"name": "CVE-2021-45942",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45942"
},
{
"name": "CVE-2021-46310",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46310"
},
{
"name": "CVE-2021-46312",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46312"
},
{
"name": "CVE-2022-0284",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0284"
},
{
"name": "CVE-2022-0529",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0529"
},
{
"name": "CVE-2022-0865",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0865"
},
{
"name": "CVE-2022-0907",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0907"
},
{
"name": "CVE-2022-0909",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0909"
},
{
"name": "CVE-2022-0924",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0924"
},
{
"name": "CVE-2022-1056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1056"
},
{
"name": "CVE-2022-1114",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1114"
},
{
"name": "CVE-2022-1115",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1115"
},
{
"name": "CVE-2022-1210",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1210"
},
{
"name": "CVE-2022-1355",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1355"
},
{
"name": "CVE-2022-1623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1623"
},
{
"name": "CVE-2022-2231",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2231"
},
{
"name": "CVE-2022-2519",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2519"
},
{
"name": "CVE-2022-2520",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2520"
},
{
"name": "CVE-2022-2521",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2521"
},
{
"name": "CVE-2022-25308",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25308"
},
{
"name": "CVE-2022-25309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25309"
},
{
"name": "CVE-2022-25310",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25310"
},
{
"name": "CVE-2022-2598",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2598"
},
{
"name": "CVE-2022-26280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26280"
},
{
"name": "CVE-2022-2719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2719"
},
{
"name": "CVE-2022-28463",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28463"
},
{
"name": "CVE-2022-28805",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28805"
},
{
"name": "CVE-2022-29217",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29217"
},
{
"name": "CVE-2022-2928",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2928"
},
{
"name": "CVE-2022-2929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2929"
},
{
"name": "CVE-2022-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2953"
},
{
"name": "CVE-2022-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30698"
},
{
"name": "CVE-2022-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30699"
},
{
"name": "CVE-2022-31683",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31683"
},
{
"name": "CVE-2022-31782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31782"
},
{
"name": "CVE-2022-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3213"
},
{
"name": "CVE-2022-32545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32545"
},
{
"name": "CVE-2022-32546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32546"
},
{
"name": "CVE-2022-32547",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32547"
},
{
"name": "CVE-2022-33068",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33068"
},
{
"name": "CVE-2022-33099",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33099"
},
{
"name": "CVE-2022-36087",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36087"
},
{
"name": "CVE-2022-44267",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44267"
},
{
"name": "CVE-2022-48281",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48281"
},
{
"name": "CVE-2023-1289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1289"
},
{
"name": "CVE-2023-1355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1355"
},
{
"name": "CVE-2023-1906",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1906"
},
{
"name": "CVE-2023-1981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1981"
},
{
"name": "CVE-2023-2157",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2157"
},
{
"name": "CVE-2023-2426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2426"
},
{
"name": "CVE-2023-26785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26785"
},
{
"name": "CVE-2023-27102",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27102"
},
{
"name": "CVE-2023-30571",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30571"
},
{
"name": "CVE-2023-3195",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3195"
},
{
"name": "CVE-2023-34151",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34151"
},
{
"name": "CVE-2023-34152",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34152"
},
{
"name": "CVE-2023-34153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34153"
},
{
"name": "CVE-2023-3428",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3428"
},
{
"name": "CVE-2023-34474",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34474"
},
{
"name": "CVE-2023-34475",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34475"
},
{
"name": "CVE-2023-3618",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3618"
},
{
"name": "CVE-2023-38469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38469"
},
{
"name": "CVE-2023-38470",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38470"
},
{
"name": "CVE-2023-38471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38471"
},
{
"name": "CVE-2023-38472",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38472"
},
{
"name": "CVE-2023-38473",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38473"
},
{
"name": "CVE-2023-38633",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38633"
},
{
"name": "CVE-2023-3896",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3896"
},
{
"name": "CVE-2023-39327",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39327"
},
{
"name": "CVE-2023-39593",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39593"
},
{
"name": "CVE-2023-39978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39978"
},
{
"name": "CVE-2023-43887",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43887"
},
{
"name": "CVE-2023-45913",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45913"
},
{
"name": "CVE-2023-45919",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45919"
},
{
"name": "CVE-2023-45922",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45922"
},
{
"name": "CVE-2023-45931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45931"
},
{
"name": "CVE-2023-47471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47471"
},
{
"name": "CVE-2023-5568",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5568"
},
{
"name": "CVE-2024-10524",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10524"
},
{
"name": "CVE-2024-13978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13978"
},
{
"name": "CVE-2024-27766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27766"
},
{
"name": "CVE-2024-37407",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37407"
},
{
"name": "CVE-2024-41817",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41817"
},
{
"name": "CVE-2024-43167",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43167"
},
{
"name": "CVE-2024-43168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43168"
},
{
"name": "CVE-2024-43790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43790"
},
{
"name": "CVE-2024-45720",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45720"
},
{
"name": "CVE-2024-46901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46901"
},
{
"name": "CVE-2024-57970",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57970"
},
{
"name": "CVE-2025-0306",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0306"
},
{
"name": "CVE-2025-0838",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0838"
},
{
"name": "CVE-2025-10911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10911"
},
{
"name": "CVE-2025-11731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11731"
},
{
"name": "CVE-2025-1632",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1632"
},
{
"name": "CVE-2025-2099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2099"
},
{
"name": "CVE-2025-2148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2148"
},
{
"name": "CVE-2025-2149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2149"
},
{
"name": "CVE-2025-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2953"
},
{
"name": "CVE-2025-2998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2998"
},
{
"name": "CVE-2025-2999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2999"
},
{
"name": "CVE-2025-3000",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3000"
},
{
"name": "CVE-2025-3001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3001"
},
{
"name": "CVE-2025-3121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3121"
},
{
"name": "CVE-2025-3136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3136"
},
{
"name": "CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
},
{
"name": "CVE-2025-3262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3262"
},
{
"name": "CVE-2025-3263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3263"
},
{
"name": "CVE-2025-3264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3264"
},
{
"name": "CVE-2025-3730",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3730"
},
{
"name": "CVE-2025-3777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3777"
},
{
"name": "CVE-2025-3933",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3933"
},
{
"name": "CVE-2025-40002",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40002"
},
{
"name": "CVE-2025-40004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40004"
},
{
"name": "CVE-2025-40007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40007"
},
{
"name": "CVE-2025-40015",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40015"
},
{
"name": "CVE-2025-40017",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40017"
},
{
"name": "CVE-2025-4056",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4056"
},
{
"name": "CVE-2025-4287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4287"
},
{
"name": "CVE-2025-43965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43965"
},
{
"name": "CVE-2025-46148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46148"
},
{
"name": "CVE-2025-46149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46149"
},
{
"name": "CVE-2025-46150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46150"
},
{
"name": "CVE-2025-46152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46152"
},
{
"name": "CVE-2025-46153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46153"
},
{
"name": "CVE-2025-46393",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46393"
},
{
"name": "CVE-2025-46569",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46569"
},
{
"name": "CVE-2025-47291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47291"
},
{
"name": "CVE-2025-50950",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50950"
},
{
"name": "CVE-2025-5197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5197"
},
{
"name": "CVE-2025-52099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52099"
},
{
"name": "CVE-2025-53014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53014"
},
{
"name": "CVE-2025-53019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53019"
},
{
"name": "CVE-2025-53101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53101"
},
{
"name": "CVE-2025-53367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53367"
},
{
"name": "CVE-2025-53643",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53643"
},
{
"name": "CVE-2025-54801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54801"
},
{
"name": "CVE-2025-54874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54874"
},
{
"name": "CVE-2025-55004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55004"
},
{
"name": "CVE-2025-55005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55005"
},
{
"name": "CVE-2025-55154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55154"
},
{
"name": "CVE-2025-55160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55160"
},
{
"name": "CVE-2025-55197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55197"
},
{
"name": "CVE-2025-55212",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55212"
},
{
"name": "CVE-2025-55298",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55298"
},
{
"name": "CVE-2025-55553",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55553"
},
{
"name": "CVE-2025-55557",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55557"
},
{
"name": "CVE-2025-55558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55558"
},
{
"name": "CVE-2025-55560",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55560"
},
{
"name": "CVE-2025-5745",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5745"
},
{
"name": "CVE-2025-57803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-57803"
},
{
"name": "CVE-2025-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-57807"
},
{
"name": "CVE-2025-5878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5878"
},
{
"name": "CVE-2025-5918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5918"
},
{
"name": "CVE-2025-59375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59375"
},
{
"name": "CVE-2025-59842",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59842"
},
{
"name": "CVE-2025-6051",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6051"
},
{
"name": "CVE-2025-6052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6052"
},
{
"name": "CVE-2025-6141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6141"
},
{
"name": "CVE-2025-62171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62171"
},
{
"name": "CVE-2025-6638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6638"
},
{
"name": "CVE-2025-6921",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6921"
},
{
"name": "CVE-2025-7039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7039"
},
{
"name": "CVE-2025-7709",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7709"
},
{
"name": "CVE-2025-8114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8114"
},
{
"name": "CVE-2025-8177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8177"
},
{
"name": "CVE-2025-8277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8277"
},
{
"name": "CVE-2025-8534",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8534"
},
{
"name": "CVE-2025-8556",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8556"
},
{
"name": "CVE-2025-8851",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8851"
},
{
"name": "CVE-2025-8961",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8961"
},
{
"name": "CVE-2025-9092",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9092"
},
{
"name": "CVE-2025-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9165"
},
{
"name": "CVE-2025-9340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9340"
},
{
"name": "CVE-2025-9341",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9341"
},
{
"name": "CVE-2025-9390",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9390"
},
{
"name": "CVE-2025-9403",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9403"
},
{
"name": "CVE-2025-9714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9714"
},
{
"name": "CVE-2024-45491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45491"
},
{
"name": "CVE-2024-45492",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45492"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2024-44939",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44939"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2024-41957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41957"
},
{
"name": "CVE-2024-34459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34459"
},
{
"name": "CVE-2024-8096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8096"
},
{
"name": "CVE-2023-6246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6246"
},
{
"name": "CVE-2024-27280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27280"
},
{
"name": "CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2024-5569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5569"
},
{
"name": "CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"name": "CVE-2019-16775",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16775"
},
{
"name": "CVE-2019-16776",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16776"
},
{
"name": "CVE-2019-16777",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16777"
},
{
"name": "CVE-2024-21208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21208"
},
{
"name": "CVE-2024-21210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21210"
},
{
"name": "CVE-2024-21217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21217"
},
{
"name": "CVE-2024-21235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21235"
},
{
"name": "CVE-2024-37370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37370"
},
{
"name": "CVE-2024-37371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37371"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-9143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9143"
},
{
"name": "CVE-2024-38819",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38819"
},
{
"name": "CVE-2024-38820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38820"
},
{
"name": "CVE-2023-6349",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6349"
},
{
"name": "CVE-2024-5197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5197"
},
{
"name": "CVE-2024-35176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35176"
},
{
"name": "CVE-2024-39908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39908"
},
{
"name": "CVE-2024-41123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41123"
},
{
"name": "CVE-2024-41946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41946"
},
{
"name": "CVE-2024-43398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43398"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-45490",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45490"
},
{
"name": "CVE-2024-47874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47874"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2024-8088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8088"
},
{
"name": "CVE-2024-9681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9681"
},
{
"name": "CVE-2024-11168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11168"
},
{
"name": "CVE-2024-38828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38828"
},
{
"name": "CVE-2024-38829",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38829"
},
{
"name": "CVE-2024-52316",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52316"
},
{
"name": "CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"name": "CVE-2023-49582",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49582"
},
{
"name": "CVE-2024-11053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11053"
},
{
"name": "CVE-2024-54534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
},
{
"name": "CVE-2024-10041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10041"
},
{
"name": "CVE-2024-10963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10963"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-50379",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50379"
},
{
"name": "CVE-2024-54677",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54677"
},
{
"name": "CVE-2024-27407",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27407"
},
{
"name": "CVE-2024-50157",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50157"
},
{
"name": "CVE-2017-9937",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9937"
},
{
"name": "CVE-2022-0561",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0561"
},
{
"name": "CVE-2022-0562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0562"
},
{
"name": "CVE-2022-0908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0908"
},
{
"name": "CVE-2022-2056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2056"
},
{
"name": "CVE-2022-2057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2057"
},
{
"name": "CVE-2022-2058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2058"
},
{
"name": "CVE-2022-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22844"
},
{
"name": "CVE-2022-2867",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2867"
},
{
"name": "CVE-2022-2868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2868"
},
{
"name": "CVE-2022-2869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2869"
},
{
"name": "CVE-2022-34526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34526"
},
{
"name": "CVE-2022-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3570"
},
{
"name": "CVE-2022-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3597"
},
{
"name": "CVE-2022-3598",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3598"
},
{
"name": "CVE-2022-3599",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3599"
},
{
"name": "CVE-2022-3626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3626"
},
{
"name": "CVE-2022-3627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3627"
},
{
"name": "CVE-2022-40090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40090"
},
{
"name": "CVE-2022-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4645"
},
{
"name": "CVE-2023-0795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0795"
},
{
"name": "CVE-2023-0796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0796"
},
{
"name": "CVE-2023-0797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0797"
},
{
"name": "CVE-2023-0798",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0798"
},
{
"name": "CVE-2023-0799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0799"
},
{
"name": "CVE-2023-0800",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0800"
},
{
"name": "CVE-2023-0801",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0801"
},
{
"name": "CVE-2023-0802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0802"
},
{
"name": "CVE-2023-0803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0803"
},
{
"name": "CVE-2023-0804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0804"
},
{
"name": "CVE-2023-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1916"
},
{
"name": "CVE-2023-2731",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2731"
},
{
"name": "CVE-2023-2908",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2908"
},
{
"name": "CVE-2023-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3576"
},
{
"name": "CVE-2023-40745",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40745"
},
{
"name": "CVE-2023-41175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41175"
},
{
"name": "CVE-2024-56337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56337"
},
{
"name": "CVE-2024-27281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27281"
},
{
"name": "CVE-2024-12085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12085"
},
{
"name": "CVE-2024-12086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12086"
},
{
"name": "CVE-2024-12087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12087"
},
{
"name": "CVE-2024-12088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12088"
},
{
"name": "CVE-2024-12747",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12747"
},
{
"name": "CVE-2025-21502",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21502"
},
{
"name": "CVE-2025-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23083"
},
{
"name": "CVE-2025-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23084"
},
{
"name": "CVE-2025-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23085"
},
{
"name": "CVE-2024-11187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11187"
},
{
"name": "CVE-2024-12705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12705"
},
{
"name": "CVE-2025-0938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0938"
},
{
"name": "CVE-2025-0167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0167"
},
{
"name": "CVE-2025-0725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0725"
},
{
"name": "CVE-2023-28154",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28154"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2024-50602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50602"
},
{
"name": "CVE-2025-21666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21666"
},
{
"name": "CVE-2025-21669",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21669"
},
{
"name": "CVE-2025-21670",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21670"
},
{
"name": "CVE-2025-21674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21674"
},
{
"name": "CVE-2025-21675",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21675"
},
{
"name": "CVE-2025-21676",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21676"
},
{
"name": "CVE-2025-21678",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21678"
},
{
"name": "CVE-2025-21682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21682"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-57948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57948"
},
{
"name": "CVE-2025-21665",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21665"
},
{
"name": "CVE-2025-21667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21667"
},
{
"name": "CVE-2025-21668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21668"
},
{
"name": "CVE-2025-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21680"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2025-21683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21683"
},
{
"name": "CVE-2024-12797",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12797"
},
{
"name": "CVE-2024-13176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13176"
},
{
"name": "CVE-2025-1094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1094"
},
{
"name": "CVE-2025-26465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26465"
},
{
"name": "CVE-2025-21673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21673"
},
{
"name": "CVE-2024-49887",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49887"
},
{
"name": "CVE-2024-8508",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8508"
},
{
"name": "CVE-2025-1795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1795"
},
{
"name": "CVE-2025-21684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21684"
},
{
"name": "CVE-2025-21689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21689"
},
{
"name": "CVE-2025-21690",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21690"
},
{
"name": "CVE-2025-21692",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21692"
},
{
"name": "CVE-2025-21697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21697"
},
{
"name": "CVE-2025-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21699"
},
{
"name": "CVE-2024-57949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57949"
},
{
"name": "CVE-2024-57951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57951"
},
{
"name": "CVE-2025-21694",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21694"
},
{
"name": "CVE-2025-24813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24813"
},
{
"name": "CVE-2024-57979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57979"
},
{
"name": "CVE-2024-57994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57994"
},
{
"name": "CVE-2025-21705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21705"
},
{
"name": "CVE-2025-21715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21715"
},
{
"name": "CVE-2025-21716",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21716"
},
{
"name": "CVE-2025-21719",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21719"
},
{
"name": "CVE-2025-21724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21724"
},
{
"name": "CVE-2025-21725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21725"
},
{
"name": "CVE-2025-21728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21728"
},
{
"name": "CVE-2025-21733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21733"
},
{
"name": "CVE-2025-21753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21753"
},
{
"name": "CVE-2025-21754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21754"
},
{
"name": "CVE-2025-21767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21767"
},
{
"name": "CVE-2025-21790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21790"
},
{
"name": "CVE-2025-21795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21795"
},
{
"name": "CVE-2025-21799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21799"
},
{
"name": "CVE-2025-21802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21802"
},
{
"name": "CVE-2022-49043",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49043"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"name": "CVE-2025-22228",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22228"
},
{
"name": "CVE-2023-24531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24531"
},
{
"name": "CVE-2024-45336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45336"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2024-45341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45341"
},
{
"name": "CVE-2025-22866",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22866"
},
{
"name": "CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"name": "CVE-2024-57996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57996"
},
{
"name": "CVE-2024-58014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58014"
},
{
"name": "CVE-2025-21718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21718"
},
{
"name": "CVE-2025-21772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21772"
},
{
"name": "CVE-2025-21780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21780"
},
{
"name": "CVE-2025-21785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21785"
},
{
"name": "CVE-2024-57883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57883"
},
{
"name": "CVE-2024-57924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57924"
},
{
"name": "CVE-2024-56171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56171"
},
{
"name": "CVE-2025-27113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27113"
},
{
"name": "CVE-2024-54458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54458"
},
{
"name": "CVE-2024-57834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57834"
},
{
"name": "CVE-2024-57973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57973"
},
{
"name": "CVE-2024-57980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57980"
},
{
"name": "CVE-2024-57981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57981"
},
{
"name": "CVE-2024-57986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57986"
},
{
"name": "CVE-2024-57993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57993"
},
{
"name": "CVE-2024-57997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57997"
},
{
"name": "CVE-2024-57998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57998"
},
{
"name": "CVE-2024-58001",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58001"
},
{
"name": "CVE-2024-58007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58007"
},
{
"name": "CVE-2024-58010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58010"
},
{
"name": "CVE-2024-58011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58011"
},
{
"name": "CVE-2024-58013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58013"
},
{
"name": "CVE-2024-58016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58016"
},
{
"name": "CVE-2024-58017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58017"
},
{
"name": "CVE-2024-58020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58020"
},
{
"name": "CVE-2024-58034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58034"
},
{
"name": "CVE-2024-58051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58051"
},
{
"name": "CVE-2024-58052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58052"
},
{
"name": "CVE-2024-58054",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58054"
},
{
"name": "CVE-2024-58055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58055"
},
{
"name": "CVE-2024-58056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58056"
},
{
"name": "CVE-2024-58058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58058"
},
{
"name": "CVE-2024-58061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58061"
},
{
"name": "CVE-2024-58063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58063"
},
{
"name": "CVE-2024-58068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58068"
},
{
"name": "CVE-2024-58069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58069"
},
{
"name": "CVE-2024-58071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58071"
},
{
"name": "CVE-2024-58072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58072"
},
{
"name": "CVE-2024-58076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58076"
},
{
"name": "CVE-2024-58077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58077"
},
{
"name": "CVE-2024-58080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58080"
},
{
"name": "CVE-2024-58083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58083"
},
{
"name": "CVE-2024-58085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58085"
},
{
"name": "CVE-2024-58086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58086"
},
{
"name": "CVE-2025-21704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21704"
},
{
"name": "CVE-2025-21706",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21706"
},
{
"name": "CVE-2025-21707",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21707"
},
{
"name": "CVE-2025-21708",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21708"
},
{
"name": "CVE-2025-21711",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21711"
},
{
"name": "CVE-2025-21722",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21722"
},
{
"name": "CVE-2025-21726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21726"
},
{
"name": "CVE-2025-21727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21727"
},
{
"name": "CVE-2025-21731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21731"
},
{
"name": "CVE-2025-21734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21734"
},
{
"name": "CVE-2025-21735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21735"
},
{
"name": "CVE-2025-21736",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21736"
},
{
"name": "CVE-2025-21738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21738"
},
{
"name": "CVE-2025-21744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21744"
},
{
"name": "CVE-2025-21745",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21745"
},
{
"name": "CVE-2025-21748",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21748"
},
{
"name": "CVE-2025-21749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21749"
},
{
"name": "CVE-2025-21750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21750"
},
{
"name": "CVE-2025-21758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21758"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2025-21761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21761"
},
{
"name": "CVE-2025-21762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21762"
},
{
"name": "CVE-2025-21763",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21763"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-21775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21775"
},
{
"name": "CVE-2025-21776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21776"
},
{
"name": "CVE-2025-21779",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21779"
},
{
"name": "CVE-2025-21781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21781"
},
{
"name": "CVE-2025-21782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21782"
},
{
"name": "CVE-2025-21787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21787"
},
{
"name": "CVE-2025-21791",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21791"
},
{
"name": "CVE-2025-21792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21792"
},
{
"name": "CVE-2025-21796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21796"
},
{
"name": "CVE-2025-21804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21804"
},
{
"name": "CVE-2025-21806",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21806"
},
{
"name": "CVE-2025-21811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21811"
},
{
"name": "CVE-2025-21812",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21812"
},
{
"name": "CVE-2025-21814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21814"
},
{
"name": "CVE-2025-21820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21820"
},
{
"name": "CVE-2025-21821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21821"
},
{
"name": "CVE-2025-21823",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21823"
},
{
"name": "CVE-2025-21826",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21826"
},
{
"name": "CVE-2025-21829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21829"
},
{
"name": "CVE-2025-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21830"
},
{
"name": "CVE-2025-21832",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21832"
},
{
"name": "CVE-2025-21835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21835"
},
{
"name": "CVE-2024-49761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49761"
},
{
"name": "CVE-2025-21574",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21574"
},
{
"name": "CVE-2025-21575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21575"
},
{
"name": "CVE-2025-21577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21577"
},
{
"name": "CVE-2025-21579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21579"
},
{
"name": "CVE-2025-21580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21580"
},
{
"name": "CVE-2025-21581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21581"
},
{
"name": "CVE-2025-21584",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21584"
},
{
"name": "CVE-2025-21585",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21585"
},
{
"name": "CVE-2025-30681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30681"
},
{
"name": "CVE-2025-30682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30682"
},
{
"name": "CVE-2025-30683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30683"
},
{
"name": "CVE-2025-30684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30684"
},
{
"name": "CVE-2025-30685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30685"
},
{
"name": "CVE-2025-30687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30687"
},
{
"name": "CVE-2025-30688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30688"
},
{
"name": "CVE-2025-30689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30689"
},
{
"name": "CVE-2025-30693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30693"
},
{
"name": "CVE-2025-30695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30695"
},
{
"name": "CVE-2025-30696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30696"
},
{
"name": "CVE-2025-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30699"
},
{
"name": "CVE-2025-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30703"
},
{
"name": "CVE-2025-30704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30704"
},
{
"name": "CVE-2025-30705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30705"
},
{
"name": "CVE-2025-30715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30715"
},
{
"name": "CVE-2025-30721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30721"
},
{
"name": "CVE-2025-30722",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30722"
},
{
"name": "CVE-2024-52559",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52559"
},
{
"name": "CVE-2024-57974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57974"
},
{
"name": "CVE-2024-57990",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57990"
},
{
"name": "CVE-2024-57999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57999"
},
{
"name": "CVE-2024-58002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58002"
},
{
"name": "CVE-2024-58005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58005"
},
{
"name": "CVE-2024-58006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58006"
},
{
"name": "CVE-2024-58019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58019"
},
{
"name": "CVE-2024-58057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58057"
},
{
"name": "CVE-2024-58078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58078"
},
{
"name": "CVE-2024-58079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58079"
},
{
"name": "CVE-2025-21714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21714"
},
{
"name": "CVE-2025-21723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21723"
},
{
"name": "CVE-2025-21732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21732"
},
{
"name": "CVE-2025-21739",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21739"
},
{
"name": "CVE-2025-21741",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21741"
},
{
"name": "CVE-2025-21742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21742"
},
{
"name": "CVE-2025-21743",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21743"
},
{
"name": "CVE-2025-21759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21759"
},
{
"name": "CVE-2025-21773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21773"
},
{
"name": "CVE-2025-21784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21784"
},
{
"name": "CVE-2025-21793",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21793"
},
{
"name": "CVE-2025-21810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21810"
},
{
"name": "CVE-2025-21815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21815"
},
{
"name": "CVE-2025-21825",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21825"
},
{
"name": "CVE-2025-21828",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21828"
},
{
"name": "CVE-2025-21838",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21838"
},
{
"name": "CVE-2025-21839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21839"
},
{
"name": "CVE-2025-21844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21844"
},
{
"name": "CVE-2025-21846",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21846"
},
{
"name": "CVE-2025-21847",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21847"
},
{
"name": "CVE-2025-21848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21848"
},
{
"name": "CVE-2025-21855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21855"
},
{
"name": "CVE-2025-21856",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21856"
},
{
"name": "CVE-2025-21857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21857"
},
{
"name": "CVE-2025-21858",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21858"
},
{
"name": "CVE-2025-21859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21859"
},
{
"name": "CVE-2025-21861",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21861"
},
{
"name": "CVE-2025-21862",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21862"
},
{
"name": "CVE-2025-21864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21864"
},
{
"name": "CVE-2025-21866",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21866"
},
{
"name": "CVE-2025-21869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21869"
},
{
"name": "CVE-2025-21870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21870"
},
{
"name": "CVE-2025-21871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21871"
},
{
"name": "CVE-2025-21877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21877"
},
{
"name": "CVE-2025-21878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21878"
},
{
"name": "CVE-2025-21883",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21883"
},
{
"name": "CVE-2025-21885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21885"
},
{
"name": "CVE-2025-21888",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21888"
},
{
"name": "CVE-2025-21890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21890"
},
{
"name": "CVE-2025-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21891"
},
{
"name": "CVE-2025-21892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21892"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2024-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8176"
},
{
"name": "CVE-2025-24928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24928"
},
{
"name": "CVE-2024-57977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57977"
},
{
"name": "CVE-2024-58090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58090"
},
{
"name": "CVE-2025-21712",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21712"
},
{
"name": "CVE-2025-21721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21721"
},
{
"name": "CVE-2025-21867",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21867"
},
{
"name": "CVE-2025-21875",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21875"
},
{
"name": "CVE-2025-21881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21881"
},
{
"name": "CVE-2025-21887",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21887"
},
{
"name": "CVE-2025-21898",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21898"
},
{
"name": "CVE-2025-21899",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21899"
},
{
"name": "CVE-2025-21904",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21904"
},
{
"name": "CVE-2025-21905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21905"
},
{
"name": "CVE-2025-21909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21909"
},
{
"name": "CVE-2025-21910",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21910"
},
{
"name": "CVE-2025-21912",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21912"
},
{
"name": "CVE-2025-21913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21913"
},
{
"name": "CVE-2025-21914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21914"
},
{
"name": "CVE-2025-21916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21916"
},
{
"name": "CVE-2025-21917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21917"
},
{
"name": "CVE-2025-21918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21918"
},
{
"name": "CVE-2025-21919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21919"
},
{
"name": "CVE-2025-21920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21920"
},
{
"name": "CVE-2025-21922",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21922"
},
{
"name": "CVE-2025-21924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21924"
},
{
"name": "CVE-2025-21925",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21925"
},
{
"name": "CVE-2025-21926",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21926"
},
{
"name": "CVE-2025-21928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21928"
},
{
"name": "CVE-2025-21934",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21934"
},
{
"name": "CVE-2025-21935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21935"
},
{
"name": "CVE-2025-21936",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21936"
},
{
"name": "CVE-2025-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21937"
},
{
"name": "CVE-2025-21941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21941"
},
{
"name": "CVE-2025-21943",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21943"
},
{
"name": "CVE-2025-21944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21944"
},
{
"name": "CVE-2025-21945",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21945"
},
{
"name": "CVE-2025-21947",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21947"
},
{
"name": "CVE-2025-21948",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21948"
},
{
"name": "CVE-2025-21950",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21950"
},
{
"name": "CVE-2025-21951",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21951"
},
{
"name": "CVE-2025-21956",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21956"
},
{
"name": "CVE-2025-21957",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21957"
},
{
"name": "CVE-2025-21959",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21959"
},
{
"name": "CVE-2025-21960",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21960"
},
{
"name": "CVE-2025-21962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21962"
},
{
"name": "CVE-2025-21963",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21963"
},
{
"name": "CVE-2025-21964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21964"
},
{
"name": "CVE-2025-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21968"
},
{
"name": "CVE-2025-21970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21970"
},
{
"name": "CVE-2025-21975",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21975"
},
{
"name": "CVE-2025-21978",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21978"
},
{
"name": "CVE-2025-21979",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21979"
},
{
"name": "CVE-2025-21980",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21980"
},
{
"name": "CVE-2025-21981",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21981"
},
{
"name": "CVE-2025-21986",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21986"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-21992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21992"
},
{
"name": "CVE-2025-21994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21994"
},
{
"name": "CVE-2025-21996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21996"
},
{
"name": "CVE-2025-21997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21997"
},
{
"name": "CVE-2025-21999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21999"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-22005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22005"
},
{
"name": "CVE-2025-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22007"
},
{
"name": "CVE-2025-22008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22008"
},
{
"name": "CVE-2025-22010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22010"
},
{
"name": "CVE-2025-22014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22014"
},
{
"name": "CVE-2025-22015",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22015"
},
{
"name": "CVE-2025-21969",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21969"
},
{
"name": "CVE-2024-12798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12798"
},
{
"name": "CVE-2024-12801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12801"
},
{
"name": "CVE-2025-27789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27789"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-22235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22235"
},
{
"name": "CVE-2024-57952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57952"
},
{
"name": "CVE-2025-21672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21672"
},
{
"name": "CVE-2025-21691",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21691"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
},
{
"name": "CVE-2025-21927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21927"
},
{
"name": "CVE-2025-21853",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21853"
},
{
"name": "CVE-2025-22088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22088"
},
{
"name": "CVE-2025-37785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37785"
},
{
"name": "CVE-2025-27363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27363"
},
{
"name": "CVE-2025-27516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27516"
},
{
"name": "CVE-2024-58081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58081"
},
{
"name": "CVE-2025-4207",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4207"
},
{
"name": "CVE-2025-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4516"
},
{
"name": "CVE-2025-22233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22233"
},
{
"name": "CVE-2024-55549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55549"
},
{
"name": "CVE-2024-9287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9287"
},
{
"name": "CVE-2025-24855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24855"
},
{
"name": "CVE-2025-41232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41232"
},
{
"name": "CVE-2025-23165",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23165"
},
{
"name": "CVE-2025-23166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23166"
},
{
"name": "CVE-2025-23167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23167"
},
{
"name": "CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2024-58018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58018"
},
{
"name": "CVE-2024-58070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58070"
},
{
"name": "CVE-2024-58088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58088"
},
{
"name": "CVE-2024-58093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58093"
},
{
"name": "CVE-2025-21768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21768"
},
{
"name": "CVE-2025-21808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21808"
},
{
"name": "CVE-2025-21836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21836"
},
{
"name": "CVE-2025-21854",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21854"
},
{
"name": "CVE-2025-21863",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21863"
},
{
"name": "CVE-2025-21873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21873"
},
{
"name": "CVE-2025-21889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21889"
},
{
"name": "CVE-2025-21894",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21894"
},
{
"name": "CVE-2025-21895",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21895"
},
{
"name": "CVE-2025-21908",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21908"
},
{
"name": "CVE-2025-21915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21915"
},
{
"name": "CVE-2025-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21930"
},
{
"name": "CVE-2025-21961",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21961"
},
{
"name": "CVE-2025-21966",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21966"
},
{
"name": "CVE-2025-21972",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21972"
},
{
"name": "CVE-2025-21976",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21976"
},
{
"name": "CVE-2025-21995",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21995"
},
{
"name": "CVE-2025-22001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22001"
},
{
"name": "CVE-2025-22003",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22003"
},
{
"name": "CVE-2025-22009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22009"
},
{
"name": "CVE-2025-22013",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22013"
},
{
"name": "CVE-2025-22016",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22016"
},
{
"name": "CVE-2025-22017",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22017"
},
{
"name": "CVE-2025-37798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37798"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2025-5283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5283"
},
{
"name": "CVE-2025-4947",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4947"
},
{
"name": "CVE-2025-5025",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5025"
},
{
"name": "CVE-2025-46701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46701"
},
{
"name": "CVE-2025-21872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21872"
},
{
"name": "CVE-2025-37752",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37752"
},
{
"name": "CVE-2025-37756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37756"
},
{
"name": "CVE-2025-37797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37797"
},
{
"name": "CVE-2025-37889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37889"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-37932",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37932"
},
{
"name": "CVE-2025-37948",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37948"
},
{
"name": "CVE-2025-37963",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37963"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"name": "CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"name": "CVE-2022-1354",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1354"
},
{
"name": "CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"name": "CVE-2023-6779",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6779"
},
{
"name": "CVE-2023-6780",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6780"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2024-2236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2236"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2024-56433",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56433"
},
{
"name": "CVE-2025-0395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0395"
},
{
"name": "CVE-2025-1390",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1390"
},
{
"name": "CVE-2025-31115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31115"
},
{
"name": "CVE-2025-32728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32728"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2025-4598",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4598"
},
{
"name": "CVE-2025-32434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32434"
},
{
"name": "CVE-2025-37750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37750"
},
{
"name": "CVE-2025-37958",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37958"
},
{
"name": "CVE-2025-37974",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37974"
},
{
"name": "CVE-2025-49146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49146"
},
{
"name": "CVE-2025-27219",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27219"
},
{
"name": "CVE-2025-27220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27220"
},
{
"name": "CVE-2025-43859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43859"
},
{
"name": "CVE-2025-48988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48988"
},
{
"name": "CVE-2025-49124",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49124"
},
{
"name": "CVE-2025-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49125"
},
{
"name": "CVE-2023-32570",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32570"
},
{
"name": "CVE-2023-39328",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39328"
},
{
"name": "CVE-2023-51792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51792"
},
{
"name": "CVE-2024-38949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38949"
},
{
"name": "CVE-2024-38950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38950"
},
{
"name": "CVE-2024-45993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45993"
},
{
"name": "CVE-2024-52616",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52616"
},
{
"name": "CVE-2024-53427",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53427"
},
{
"name": "CVE-2024-56406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56406"
},
{
"name": "CVE-2024-56826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56826"
},
{
"name": "CVE-2024-56827",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56827"
},
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2025-21868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21868"
},
{
"name": "CVE-2025-21929",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21929"
},
{
"name": "CVE-2025-40364",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40364"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2025-37997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37997"
},
{
"name": "CVE-2025-38000",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38000"
},
{
"name": "CVE-2025-38001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38001"
},
{
"name": "CVE-2025-21903",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21903"
},
{
"name": "CVE-2025-21911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21911"
},
{
"name": "CVE-2025-21946",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
},
{
"name": "CVE-2025-21955",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21955"
},
{
"name": "CVE-2025-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21967"
},
{
"name": "CVE-2025-21977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21977"
},
{
"name": "CVE-2025-21982",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21982"
},
{
"name": "CVE-2025-22011",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22011"
},
{
"name": "CVE-2025-32462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32462"
},
{
"name": "CVE-2025-32463",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32463"
},
{
"name": "CVE-2025-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52434"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2022-2208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2208"
},
{
"name": "CVE-2022-2874",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2874"
},
{
"name": "CVE-2022-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2923"
},
{
"name": "CVE-2022-2980",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2980"
},
{
"name": "CVE-2022-3153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3153"
},
{
"name": "CVE-2022-3278",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3278"
},
{
"name": "CVE-2022-4293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4293"
},
{
"name": "CVE-2023-1170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1170"
},
{
"name": "CVE-2023-1175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1175"
},
{
"name": "CVE-2023-1264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1264"
},
{
"name": "CVE-2023-2609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2609"
},
{
"name": "CVE-2023-5441",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5441"
},
{
"name": "CVE-2024-41965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41965"
},
{
"name": "CVE-2024-43374",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43374"
},
{
"name": "CVE-2024-43802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43802"
},
{
"name": "CVE-2024-47081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47081"
},
{
"name": "CVE-2024-47814",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47814"
},
{
"name": "CVE-2024-52615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52615"
},
{
"name": "CVE-2025-1215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1215"
},
{
"name": "CVE-2025-22134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22134"
},
{
"name": "CVE-2025-24014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24014"
},
{
"name": "CVE-2025-25724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25724"
},
{
"name": "CVE-2025-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26603"
},
{
"name": "CVE-2025-29768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29768"
},
{
"name": "CVE-2025-31344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31344"
},
{
"name": "CVE-2025-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
},
{
"name": "CVE-2025-4565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4565"
},
{
"name": "CVE-2025-47268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47268"
},
{
"name": "CVE-2025-5702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5702"
},
{
"name": "CVE-2024-57982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57982"
},
{
"name": "CVE-2024-58053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58053"
},
{
"name": "CVE-2025-21720",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21720"
},
{
"name": "CVE-2025-21880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21880"
},
{
"name": "CVE-2025-38003",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38003"
},
{
"name": "CVE-2025-38004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38004"
},
{
"name": "CVE-2025-38031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38031"
},
{
"name": "CVE-2025-38043",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38043"
},
{
"name": "CVE-2025-38044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38044"
},
{
"name": "CVE-2025-38065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38065"
},
{
"name": "CVE-2025-38068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38068"
},
{
"name": "CVE-2025-38072",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38072"
},
{
"name": "CVE-2025-38077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38077"
},
{
"name": "CVE-2025-38078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38078"
},
{
"name": "CVE-2025-38079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38079"
},
{
"name": "CVE-2025-38083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38083"
},
{
"name": "CVE-2025-22227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22227"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-50077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50077"
},
{
"name": "CVE-2025-50078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50078"
},
{
"name": "CVE-2025-50079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50079"
},
{
"name": "CVE-2025-50080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50080"
},
{
"name": "CVE-2025-50082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50082"
},
{
"name": "CVE-2025-50083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50083"
},
{
"name": "CVE-2025-50084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50084"
},
{
"name": "CVE-2025-50085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50085"
},
{
"name": "CVE-2025-50086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50086"
},
{
"name": "CVE-2025-50087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50087"
},
{
"name": "CVE-2025-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50088"
},
{
"name": "CVE-2025-50091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50091"
},
{
"name": "CVE-2025-50092",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50092"
},
{
"name": "CVE-2025-50093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50093"
},
{
"name": "CVE-2025-50094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50094"
},
{
"name": "CVE-2025-50096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50096"
},
{
"name": "CVE-2025-50097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50097"
},
{
"name": "CVE-2025-50098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50098"
},
{
"name": "CVE-2025-50099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50099"
},
{
"name": "CVE-2025-50100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50100"
},
{
"name": "CVE-2025-50101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50101"
},
{
"name": "CVE-2025-50102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50102"
},
{
"name": "CVE-2025-50104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50104"
},
{
"name": "CVE-2025-53023",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53023"
},
{
"name": "CVE-2025-48734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
},
{
"name": "CVE-2025-38061",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38061"
},
{
"name": "CVE-2021-3995",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3995"
},
{
"name": "CVE-2021-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3996"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2024-47611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47611"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-25186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25186"
},
{
"name": "CVE-2025-27221",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27221"
},
{
"name": "CVE-2025-29786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29786"
},
{
"name": "CVE-2025-32955",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32955"
},
{
"name": "CVE-2025-32988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32988"
},
{
"name": "CVE-2025-32989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32989"
},
{
"name": "CVE-2025-32990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32990"
},
{
"name": "CVE-2025-38177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38177"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2025-4877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4877"
},
{
"name": "CVE-2025-4878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4878"
},
{
"name": "CVE-2025-48924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48924"
},
{
"name": "CVE-2025-49014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49014"
},
{
"name": "CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"name": "CVE-2025-5318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5318"
},
{
"name": "CVE-2025-5372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5372"
},
{
"name": "CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"name": "CVE-2025-5915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5915"
},
{
"name": "CVE-2025-5916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5916"
},
{
"name": "CVE-2025-5917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5917"
},
{
"name": "CVE-2025-6069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6069"
},
{
"name": "CVE-2025-6395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6395"
},
{
"name": "CVE-2024-57953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57953"
},
{
"name": "CVE-2024-57975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57975"
},
{
"name": "CVE-2024-58003",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58003"
},
{
"name": "CVE-2024-58082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58082"
},
{
"name": "CVE-2025-21710",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21710"
},
{
"name": "CVE-2025-21798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21798"
},
{
"name": "CVE-2025-21801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21801"
},
{
"name": "CVE-2025-21809",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21809"
},
{
"name": "CVE-2025-21816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21816"
},
{
"name": "CVE-2025-38086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38086"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2025-7424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7424"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2024-12254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12254"
},
{
"name": "CVE-2025-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50182"
},
{
"name": "CVE-2025-38052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38052"
},
{
"name": "CVE-2025-38088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38088"
},
{
"name": "CVE-2025-27210",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27210"
},
{
"name": "CVE-2025-38181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38181"
},
{
"name": "CVE-2025-38200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38200"
},
{
"name": "CVE-2025-38206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38206"
},
{
"name": "CVE-2025-38212",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38212"
},
{
"name": "CVE-2025-38257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38257"
},
{
"name": "CVE-2025-27817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27817"
},
{
"name": "CVE-2025-27818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27818"
},
{
"name": "CVE-2025-48989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48989"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2025-53859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53859"
},
{
"name": "CVE-2025-24293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24293"
},
{
"name": "CVE-2025-55193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55193"
},
{
"name": "CVE-2021-32256",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32256"
},
{
"name": "CVE-2024-25260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25260"
},
{
"name": "CVE-2025-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1371"
},
{
"name": "CVE-2025-1376",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1376"
},
{
"name": "CVE-2025-1377",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1377"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-48964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48964"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-53905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53905"
},
{
"name": "CVE-2025-53906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53906"
},
{
"name": "CVE-2025-41242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41242"
},
{
"name": "CVE-2025-38034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38034"
},
{
"name": "CVE-2025-38035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38035"
},
{
"name": "CVE-2025-38037",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38037"
},
{
"name": "CVE-2025-38048",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38048"
},
{
"name": "CVE-2025-38051",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38051"
},
{
"name": "CVE-2025-38058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38058"
},
{
"name": "CVE-2025-38066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38066"
},
{
"name": "CVE-2025-38067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38067"
},
{
"name": "CVE-2025-38074",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38074"
},
{
"name": "CVE-2025-38075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38075"
},
{
"name": "CVE-2025-38084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38084"
},
{
"name": "CVE-2025-38085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38085"
},
{
"name": "CVE-2025-38090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38090"
},
{
"name": "CVE-2025-38100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38100"
},
{
"name": "CVE-2025-38102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38102"
},
{
"name": "CVE-2025-38103",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38103"
},
{
"name": "CVE-2025-38107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38107"
},
{
"name": "CVE-2025-38108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38108"
},
{
"name": "CVE-2025-38111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38111"
},
{
"name": "CVE-2025-38112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38112"
},
{
"name": "CVE-2025-38115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38115"
},
{
"name": "CVE-2025-38119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38119"
},
{
"name": "CVE-2025-38120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38120"
},
{
"name": "CVE-2025-38122",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38122"
},
{
"name": "CVE-2025-38135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38135"
},
{
"name": "CVE-2025-38136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38136"
},
{
"name": "CVE-2025-38138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38138"
},
{
"name": "CVE-2025-38143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38143"
},
{
"name": "CVE-2025-38145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38145"
},
{
"name": "CVE-2025-38146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38146"
},
{
"name": "CVE-2025-38147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38147"
},
{
"name": "CVE-2025-38153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38153"
},
{
"name": "CVE-2025-38154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38154"
},
{
"name": "CVE-2025-38157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38157"
},
{
"name": "CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"name": "CVE-2025-38160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38160"
},
{
"name": "CVE-2025-38161",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38161"
},
{
"name": "CVE-2025-38163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38163"
},
{
"name": "CVE-2025-38167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38167"
},
{
"name": "CVE-2025-38173",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38173"
},
{
"name": "CVE-2025-38174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38174"
},
{
"name": "CVE-2025-38184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38184"
},
{
"name": "CVE-2025-38194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38194"
},
{
"name": "CVE-2025-38197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38197"
},
{
"name": "CVE-2025-38211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38211"
},
{
"name": "CVE-2025-38218",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38218"
},
{
"name": "CVE-2025-38219",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38219"
},
{
"name": "CVE-2025-38222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38222"
},
{
"name": "CVE-2025-38226",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38226"
},
{
"name": "CVE-2025-38227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38227"
},
{
"name": "CVE-2025-38229",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38229"
},
{
"name": "CVE-2025-38231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38231"
},
{
"name": "CVE-2025-38245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38245"
},
{
"name": "CVE-2025-38249",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38249"
},
{
"name": "CVE-2025-38251",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38251"
},
{
"name": "CVE-2025-38262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38262"
},
{
"name": "CVE-2025-38263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38263"
},
{
"name": "CVE-2025-38273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38273"
},
{
"name": "CVE-2025-38280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38280"
},
{
"name": "CVE-2025-38285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38285"
},
{
"name": "CVE-2025-38286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38286"
},
{
"name": "CVE-2025-38293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38293"
},
{
"name": "CVE-2025-38298",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38298"
},
{
"name": "CVE-2025-38305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38305"
},
{
"name": "CVE-2025-38310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38310"
},
{
"name": "CVE-2025-38312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38312"
},
{
"name": "CVE-2025-38313",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38313"
},
{
"name": "CVE-2025-38319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38319"
},
{
"name": "CVE-2025-38320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38320"
},
{
"name": "CVE-2025-38324",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38324"
},
{
"name": "CVE-2025-38326",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38326"
},
{
"name": "CVE-2025-38328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38328"
},
{
"name": "CVE-2025-38332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38332"
},
{
"name": "CVE-2025-38336",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38336"
},
{
"name": "CVE-2025-38337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38337"
},
{
"name": "CVE-2025-38342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38342"
},
{
"name": "CVE-2025-38344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38344"
},
{
"name": "CVE-2025-38345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38345"
},
{
"name": "CVE-2025-38346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38346"
},
{
"name": "CVE-2025-38348",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38348"
},
{
"name": "CVE-2025-38350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38350"
},
{
"name": "CVE-2025-38352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38352"
},
{
"name": "CVE-2025-38362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38362"
},
{
"name": "CVE-2025-38363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38363"
},
{
"name": "CVE-2025-38371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38371"
},
{
"name": "CVE-2025-38375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38375"
},
{
"name": "CVE-2025-38377",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38377"
},
{
"name": "CVE-2025-38384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38384"
},
{
"name": "CVE-2025-38386",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38386"
},
{
"name": "CVE-2025-38387",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38387"
},
{
"name": "CVE-2025-38389",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38389"
},
{
"name": "CVE-2025-38391",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38391"
},
{
"name": "CVE-2025-38393",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38393"
},
{
"name": "CVE-2025-38395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38395"
},
{
"name": "CVE-2025-38399",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38399"
},
{
"name": "CVE-2025-38400",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38400"
},
{
"name": "CVE-2025-38401",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38401"
},
{
"name": "CVE-2025-38403",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38403"
},
{
"name": "CVE-2025-38406",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38406"
},
{
"name": "CVE-2025-38410",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38410"
},
{
"name": "CVE-2025-38412",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38412"
},
{
"name": "CVE-2025-38415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38415"
},
{
"name": "CVE-2025-38416",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38416"
},
{
"name": "CVE-2025-38418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38418"
},
{
"name": "CVE-2025-38419",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38419"
},
{
"name": "CVE-2025-38420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38420"
},
{
"name": "CVE-2025-38424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38424"
},
{
"name": "CVE-2025-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38428"
},
{
"name": "CVE-2025-38430",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38430"
},
{
"name": "CVE-2025-38439",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38439"
},
{
"name": "CVE-2025-38441",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38441"
},
{
"name": "CVE-2025-38443",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38443"
},
{
"name": "CVE-2025-38444",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38444"
},
{
"name": "CVE-2025-38445",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38445"
},
{
"name": "CVE-2025-38448",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38448"
},
{
"name": "CVE-2025-38457",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38457"
},
{
"name": "CVE-2025-38458",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38458"
},
{
"name": "CVE-2025-38459",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38459"
},
{
"name": "CVE-2025-38460",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38460"
},
{
"name": "CVE-2025-38461",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38461"
},
{
"name": "CVE-2025-38462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38462"
},
{
"name": "CVE-2025-38464",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38464"
},
{
"name": "CVE-2025-38465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38465"
},
{
"name": "CVE-2025-38466",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38466"
},
{
"name": "CVE-2025-38467",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38467"
},
{
"name": "CVE-2025-38477",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38477"
},
{
"name": "CVE-2025-38498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38498"
},
{
"name": "CVE-2025-38500",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38500"
},
{
"name": "CVE-2025-8713",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8713"
},
{
"name": "CVE-2025-8714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8714"
},
{
"name": "CVE-2025-8715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8715"
},
{
"name": "CVE-2024-54456",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54456"
},
{
"name": "CVE-2025-21746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21746"
},
{
"name": "CVE-2025-21783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21783"
},
{
"name": "CVE-2025-21786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21786"
},
{
"name": "CVE-2025-38203",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38203"
},
{
"name": "CVE-2025-38204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38204"
},
{
"name": "CVE-2025-54988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54988"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2025-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
},
{
"name": "CVE-2025-54410",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54410"
},
{
"name": "CVE-2025-55163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2025-9288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
},
{
"name": "CVE-2011-3374",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3374"
},
{
"name": "CVE-2014-4715",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4715"
},
{
"name": "CVE-2016-0682",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0682"
},
{
"name": "CVE-2016-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0689"
},
{
"name": "CVE-2016-0692",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0692"
},
{
"name": "CVE-2016-0694",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0694"
},
{
"name": "CVE-2016-3418",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3418"
},
{
"name": "CVE-2017-10140",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10140"
},
{
"name": "CVE-2017-3604",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3604"
},
{
"name": "CVE-2017-3605",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3605"
},
{
"name": "CVE-2017-3606",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3606"
},
{
"name": "CVE-2017-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3607"
},
{
"name": "CVE-2017-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3608"
},
{
"name": "CVE-2017-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3609"
},
{
"name": "CVE-2017-3610",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3610"
},
{
"name": "CVE-2017-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3611"
},
{
"name": "CVE-2017-3612",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3612"
},
{
"name": "CVE-2017-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3613"
},
{
"name": "CVE-2017-3614",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3614"
},
{
"name": "CVE-2017-3615",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3615"
},
{
"name": "CVE-2017-3616",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3616"
},
{
"name": "CVE-2017-3617",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3617"
},
{
"name": "CVE-2020-2981",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2981"
},
{
"name": "CVE-2022-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3219"
},
{
"name": "CVE-2022-39046",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39046"
},
{
"name": "CVE-2022-42010",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42010"
},
{
"name": "CVE-2022-42011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42011"
},
{
"name": "CVE-2022-42012",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42012"
},
{
"name": "CVE-2022-44638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44638"
},
{
"name": "CVE-2023-31437",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31437"
},
{
"name": "CVE-2023-31438",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31438"
},
{
"name": "CVE-2023-31439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31439"
},
{
"name": "CVE-2023-37769",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37769"
},
{
"name": "CVE-2023-47039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47039"
},
{
"name": "CVE-2024-11584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11584"
},
{
"name": "CVE-2024-21742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21742"
},
{
"name": "CVE-2024-26462",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26462"
},
{
"name": "CVE-2024-3220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3220"
},
{
"name": "CVE-2024-6174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6174"
},
{
"name": "CVE-2025-1352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1352"
},
{
"name": "CVE-2025-1365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1365"
},
{
"name": "CVE-2025-1372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1372"
},
{
"name": "CVE-2025-24294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24294"
},
{
"name": "CVE-2025-27587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27587"
},
{
"name": "CVE-2025-30258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30258"
},
{
"name": "CVE-2025-31672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31672"
},
{
"name": "CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"name": "CVE-2025-43857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43857"
},
{
"name": "CVE-2025-45582",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45582"
},
{
"name": "CVE-2025-45768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45768"
},
{
"name": "CVE-2025-49795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49795"
},
{
"name": "CVE-2025-5222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5222"
},
{
"name": "CVE-2025-5278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5278"
},
{
"name": "CVE-2025-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53864"
},
{
"name": "CVE-2025-6170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6170"
},
{
"name": "CVE-2025-6297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6297"
},
{
"name": "CVE-2025-7962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7962"
},
{
"name": "CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"name": "CVE-2025-8732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8732"
},
{
"name": "CVE-2025-8885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8885"
},
{
"name": "CVE-2025-8916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8916"
},
{
"name": "CVE-2025-32386",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32386"
},
{
"name": "CVE-2025-32387",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32387"
},
{
"name": "CVE-2025-53547",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53547"
},
{
"name": "CVE-2025-10148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10148"
},
{
"name": "CVE-2025-9086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9086"
},
{
"name": "CVE-2025-38513",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38513"
},
{
"name": "CVE-2025-38515",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38515"
},
{
"name": "CVE-2025-38516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38516"
},
{
"name": "CVE-2025-38540",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38540"
},
{
"name": "CVE-2025-38617",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38617"
},
{
"name": "CVE-2025-38618",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38618"
},
{
"name": "CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"name": "CVE-2025-41248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41248"
},
{
"name": "CVE-2025-41249",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41249"
}
],
"initial_release_date": "2025-11-06T00:00:00",
"last_revision_date": "2025-11-06T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0969",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-11-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36320",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36320"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36423",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36423"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2022-19",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36364"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-53",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36351"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36424",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36424"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36412",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36412"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36388",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36388"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36426",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36426"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36411",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36411"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36357",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36357"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36408",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36408"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36349",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36349"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36414",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36414"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36397",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36397"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36389",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36389"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36398",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36398"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36380",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36380"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-41",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36407"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36362",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36362"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36413",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36413"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36384",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36384"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36379",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36379"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36400",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36400"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36377",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36377"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36368",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36368"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36418",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36418"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36420",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36420"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36391",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36391"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36392",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36392"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36353",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36353"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-14",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36356"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36422",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36422"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36381",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36381"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36421",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36421"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36416",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36416"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-86",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36415"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36403",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36403"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36347",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36347"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36383",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36383"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36410",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36410"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36352",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36352"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36394",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36394"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36354",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36354"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36399",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36399"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-53",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36350"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36419",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36419"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-85",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36401"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2022-19",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36365"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36405",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36405"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2018-27",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36367"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36395",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36395"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36387",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36387"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36363",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36363"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36385",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36385"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36409",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36409"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-53",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36359"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36348",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36348"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36386",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36386"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36417",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36417"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36425",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36425"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2018-27",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36366"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2024-44",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36360"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36355",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36355"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-53",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36358"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36396",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36396"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36378",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36378"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36382",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36382"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36404",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36404"
},
{
"published_at": "2025-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2024-44",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36361"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36402",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36402"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36393",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36393"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36406",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36406"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36390",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36390"
}
]
}
CERTFR-2025-AVI-1131
Vulnerability from certfr_avis - Published: 2025-12-19 - Updated: 2025-12-19
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Db2 Warehouse | Db2 Warehouse on Cloud Pak for Data versions antérieures à 5.3.0 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.0 versions antérieures à 7.5.0 UP14 IF03 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.0.x antérieures à 6.3.0.16 | ||
| IBM | QRadar | QRadar Suite Software versions 1.11.x antérieures à 1.11.8.0 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.4.0.x antérieures à 6.4.0.5 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.4.x antérieures à 6.2.4.5 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.3.x antérieures à 6.2.3.5 | ||
| IBM | Db2 | Db2 on Cloud Pak for Data versions antérieures à 5.3.0 | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 5.x antérieures à 5.3 | ||
| IBM | Db2 | Db2 Intelligence Center versions 1.1.x antérieures à 1.1.3.0 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.4.x antérieures à 6.2.4.2 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.3.x antérieures à 6.2.3.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Db2 Warehouse on Cloud Pak for Data versions ant\u00e9rieures \u00e0 5.3.0",
"product": {
"name": "Db2 Warehouse",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0 versions ant\u00e9rieures \u00e0 7.5.0 UP14 IF03",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.0.x ant\u00e9rieures \u00e0 6.3.0.16",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Suite Software versions 1.11.x ant\u00e9rieures \u00e0 1.11.8.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.4.0.x ant\u00e9rieures \u00e0 6.4.0.5",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.4.x ant\u00e9rieures \u00e0 6.2.4.5 ",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.3.x ant\u00e9rieures \u00e0 6.2.3.5 ",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 on Cloud Pak for Data versions ant\u00e9rieures \u00e0 5.3.0",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 5.x ant\u00e9rieures \u00e0 5.3",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Intelligence Center versions 1.1.x ant\u00e9rieures \u00e0 1.1.3.0",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.4.x ant\u00e9rieures \u00e0 6.2.4.2",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.3.x ant\u00e9rieures \u00e0 6.2.3.5",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-6395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6395"
},
{
"name": "CVE-2025-2534",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2534"
},
{
"name": "CVE-2023-1370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1370"
},
{
"name": "CVE-2025-4447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4447"
},
{
"name": "CVE-2024-38286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38286"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2021-26272",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26272"
},
{
"name": "CVE-2025-41234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41234"
},
{
"name": "CVE-2025-39761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39761"
},
{
"name": "CVE-2024-49350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49350"
},
{
"name": "CVE-2025-39883",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39883"
},
{
"name": "CVE-2025-36131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36131"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2024-12797",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12797"
},
{
"name": "CVE-2025-30065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30065"
},
{
"name": "CVE-2024-47118",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47118"
},
{
"name": "CVE-2021-2341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2341"
},
{
"name": "CVE-2022-45061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45061"
},
{
"name": "CVE-2022-30635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30635"
},
{
"name": "CVE-2021-47621",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47621"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2022-21299",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21299"
},
{
"name": "CVE-2024-45341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45341"
},
{
"name": "CVE-2025-7962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7962"
},
{
"name": "CVE-2025-61912",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61912"
},
{
"name": "CVE-2022-21305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21305"
},
{
"name": "CVE-2025-55198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55198"
},
{
"name": "CVE-2025-5372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5372"
},
{
"name": "CVE-2025-58057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58057"
},
{
"name": "CVE-2022-25927",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25927"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2025-1992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1992"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2025-22233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22233"
},
{
"name": "CVE-2025-36136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36136"
},
{
"name": "CVE-2025-38724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38724"
},
{
"name": "CVE-2020-9493",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9493"
},
{
"name": "CVE-2025-36008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36008"
},
{
"name": "CVE-2024-38820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38820"
},
{
"name": "CVE-2025-47906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47906"
},
{
"name": "CVE-2025-39718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39718"
},
{
"name": "CVE-2025-59375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59375"
},
{
"name": "CVE-2024-23454",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23454"
},
{
"name": "CVE-2022-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3510"
},
{
"name": "CVE-2022-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3509"
},
{
"name": "CVE-2025-58188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58188"
},
{
"name": "CVE-2025-36006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36006"
},
{
"name": "CVE-2023-34055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34055"
},
{
"name": "CVE-2025-36186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36186"
},
{
"name": "CVE-2025-55182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55182"
},
{
"name": "CVE-2025-38079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38079"
},
{
"name": "CVE-2025-6493",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6493"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2021-2369",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2369"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-33012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-33012"
},
{
"name": "CVE-2024-56337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56337"
},
{
"name": "CVE-2025-5187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5187"
},
{
"name": "CVE-2025-61723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61723"
},
{
"name": "CVE-2025-41235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41235"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2023-53539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53539"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2025-61725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61725"
},
{
"name": "CVE-2021-2388",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2388"
},
{
"name": "CVE-2025-39955",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39955"
},
{
"name": "CVE-2025-32990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32990"
},
{
"name": "CVE-2025-2518",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2518"
},
{
"name": "CVE-2024-41946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41946"
},
{
"name": "CVE-2022-21365",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21365"
},
{
"name": "CVE-2025-32989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32989"
},
{
"name": "CVE-2024-38827",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38827"
},
{
"name": "CVE-2025-38292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38292"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-55199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55199"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2018-10237",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10237"
},
{
"name": "CVE-2025-59250",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59250"
},
{
"name": "CVE-2025-1493",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1493"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2025-3050",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3050"
},
{
"name": "CVE-2022-21294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21294"
},
{
"name": "CVE-2025-1767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1767"
},
{
"name": "CVE-2021-26271",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26271"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2024-38821",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38821"
},
{
"name": "CVE-2025-58187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58187"
},
{
"name": "CVE-2025-39825",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39825"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-32988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32988"
},
{
"name": "CVE-2024-34750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34750"
},
{
"name": "CVE-2022-21341",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21341"
},
{
"name": "CVE-2023-53401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53401"
},
{
"name": "CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"name": "CVE-2020-8908",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8908"
},
{
"name": "CVE-2025-24294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24294"
},
{
"name": "CVE-2025-0915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0915"
},
{
"name": "CVE-2022-21340",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21340"
},
{
"name": "CVE-2022-21293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21293"
},
{
"name": "CVE-2025-38351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38351"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-52903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52903"
},
{
"name": "CVE-2022-21282",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21282"
},
{
"name": "CVE-2022-21349",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21349"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2025-46653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46653"
},
{
"name": "CVE-2025-22235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22235"
},
{
"name": "CVE-2021-28861",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28861"
},
{
"name": "CVE-2022-21248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21248"
},
{
"name": "CVE-2018-14721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14721"
},
{
"name": "CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"name": "CVE-2025-2900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2900"
},
{
"name": "CVE-2025-0426",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0426"
},
{
"name": "CVE-2020-9281",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9281"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2023-2976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2976"
},
{
"name": "CVE-2025-1000",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1000"
},
{
"name": "CVE-2022-3697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3697"
},
{
"name": "CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"name": "CVE-2023-53513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53513"
},
{
"name": "CVE-2025-33134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-33134"
},
{
"name": "CVE-2024-50379",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50379"
},
{
"name": "CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"name": "CVE-2023-39804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39804"
},
{
"name": "CVE-2025-58754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58754"
},
{
"name": "CVE-2025-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53057"
},
{
"name": "CVE-2022-3171",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3171"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2024-41123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41123"
},
{
"name": "CVE-2025-6442",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6442"
},
{
"name": "CVE-2025-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53066"
},
{
"name": "CVE-2022-50543",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50543"
},
{
"name": "CVE-2025-22227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22227"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2022-21360",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21360"
},
{
"name": "CVE-2025-61911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61911"
},
{
"name": "CVE-2022-21296",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21296"
},
{
"name": "CVE-2025-14687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14687"
},
{
"name": "CVE-2016-1000027",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1000027"
},
{
"name": "CVE-2025-47287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47287"
},
{
"name": "CVE-2024-49761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49761"
},
{
"name": "CVE-2024-57699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57699"
},
{
"name": "CVE-2025-36185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36185"
},
{
"name": "CVE-2025-48734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
}
],
"initial_release_date": "2025-12-19T00:00:00",
"last_revision_date": "2025-12-19T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1131",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-19T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-12-15",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7252732",
"url": "https://www.ibm.com/support/pages/node/7252732"
},
{
"published_at": "2025-12-15",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7254815",
"url": "https://www.ibm.com/support/pages/node/7254815"
},
{
"published_at": "2025-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7255060",
"url": "https://www.ibm.com/support/pages/node/7255060"
},
{
"published_at": "2025-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7255154",
"url": "https://www.ibm.com/support/pages/node/7255154"
},
{
"published_at": "2025-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7255095",
"url": "https://www.ibm.com/support/pages/node/7255095"
},
{
"published_at": "2025-12-16",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7254849",
"url": "https://www.ibm.com/support/pages/node/7254849"
},
{
"published_at": "2025-12-16",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7254850",
"url": "https://www.ibm.com/support/pages/node/7254850"
},
{
"published_at": "2025-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7255160",
"url": "https://www.ibm.com/support/pages/node/7255160"
},
{
"published_at": "2025-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7255065",
"url": "https://www.ibm.com/support/pages/node/7255065"
}
]
}
FKIE_CVE-2021-2341
Vulnerability from fkie_nvd - Published: 2021-07-21 15:15 - Updated: 2025-05-27 16:47
Severity
Summary
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).
References
| URL | Tags | ||
|---|---|---|---|
| secalert_us@oracle.com | https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html | Mailing List, Third Party Advisory | |
| secalert_us@oracle.com | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/ | Third Party Advisory | |
| secalert_us@oracle.com | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/ | Third Party Advisory | |
| secalert_us@oracle.com | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/ | Third Party Advisory | |
| secalert_us@oracle.com | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/ | Third Party Advisory | |
| secalert_us@oracle.com | https://security.gentoo.org/glsa/202209-05 | Third Party Advisory | |
| secalert_us@oracle.com | https://security.netapp.com/advisory/ntap-20210723-0002/ | Third Party Advisory | |
| secalert_us@oracle.com | https://www.debian.org/security/2021/dsa-4946 | Third Party Advisory | |
| secalert_us@oracle.com | https://www.oracle.com/security-alerts/cpujul2021.html | Patch, Vendor Advisory | |
| secalert_us@oracle.com | https://www.oracle.com/security-alerts/cpuoct2021.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/202209-05 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20210723-0002/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2021/dsa-4946 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.oracle.com/security-alerts/cpujul2021.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.oracle.com/security-alerts/cpuoct2021.html | Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 7 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 8 | |
| oracle | openjdk | 11 | |
| oracle | openjdk | 11.0.1 | |
| oracle | openjdk | 11.0.2 | |
| oracle | openjdk | 11.0.3 | |
| oracle | openjdk | 11.0.4 | |
| oracle | openjdk | 11.0.5 | |
| oracle | openjdk | 11.0.6 | |
| oracle | openjdk | 11.0.7 | |
| oracle | openjdk | 11.0.8 | |
| oracle | openjdk | 11.0.9 | |
| oracle | openjdk | 11.0.10 | |
| oracle | openjdk | 11.0.11 | |
| oracle | openjdk | 13 | |
| oracle | openjdk | 13.0.1 | |
| oracle | openjdk | 13.0.2 | |
| oracle | openjdk | 13.0.3 | |
| oracle | openjdk | 13.0.4 | |
| oracle | openjdk | 13.0.5 | |
| oracle | openjdk | 13.0.6 | |
| oracle | openjdk | 13.0.7 | |
| oracle | openjdk | 15 | |
| oracle | openjdk | 15.0.1 | |
| oracle | openjdk | 15.0.2 | |
| oracle | openjdk | 15.0.3 | |
| oracle | openjdk | 16 | |
| oracle | openjdk | 16.0.1 | |
| oracle | graalvm | 20.3.2 | |
| oracle | graalvm | 21.1.0 | |
| oracle | jdk | 1.7.0 | |
| oracle | jdk | 1.8.0 | |
| oracle | jdk | 11.0.11 | |
| oracle | jdk | 16.0.1 | |
| oracle | jre | 1.7.0 | |
| oracle | jre | 1.8.0 | |
| oracle | jre | 11.0.11 | |
| oracle | jre | 16.0.1 | |
| debian | debian_linux | 9.0 | |
| debian | debian_linux | 10.0 | |
| fedoraproject | fedora | 33 | |
| fedoraproject | fedora | 34 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*",
"matchCriteriaId": "E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*",
"matchCriteriaId": "02011EDC-20A7-4A16-A592-7C76E0037997",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*",
"matchCriteriaId": "AC6D4652-1226-4C60-BEDF-01EBF8AC0849",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*",
"matchCriteriaId": "3C1F9ED7-7D93-41F4-9130-15BA734420AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*",
"matchCriteriaId": "1CF9CDF1-95D3-4125-A73F-396D2280FC4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*",
"matchCriteriaId": "A13266DC-F8D9-4F30-987F-65BBEAF8D3A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*",
"matchCriteriaId": "C28388AB-CFC9-4749-A90F-383F5B905EA9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*",
"matchCriteriaId": "DA1B00F9-A81C-48B7-8DAA-F394DDF323F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*",
"matchCriteriaId": "CA7AD457-6CE6-4925-8D94-A907B40233D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*",
"matchCriteriaId": "A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*",
"matchCriteriaId": "5480E5AD-DB46-474A-9B57-84ED088A75FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*",
"matchCriteriaId": "881A4AE9-6012-4E91-98BE-0A352CC20703",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*",
"matchCriteriaId": "7E1E1079-57D9-473B-A017-964F4745F329",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*",
"matchCriteriaId": "B8D6446E-2915-4F12-87BE-E7420BC2626E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*",
"matchCriteriaId": "564EDCE3-16E6-401D-8A43-032D1F8875E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*",
"matchCriteriaId": "08278802-D31B-488A-BA6A-EBC816DF883A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*",
"matchCriteriaId": "72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*",
"matchCriteriaId": "7BBB0969-565E-43E2-B067-A10AAA5F1958",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*",
"matchCriteriaId": "D78BE95D-6270-469A-8035-FCDDB398F952",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*",
"matchCriteriaId": "88C24F40-3150-4584-93D9-8307DE04EEE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*",
"matchCriteriaId": "E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*",
"matchCriteriaId": "19626B36-62FC-4497-A2E1-7D6CD9839B19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*",
"matchCriteriaId": "5713AEBD-35F6-44E8-A0CC-A42830D7AE20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*",
"matchCriteriaId": "8BE0C04B-440E-4B35-ACC8-6264514F764C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*",
"matchCriteriaId": "555EC2A6-0475-48ED-AE0C-B306714A9333",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*",
"matchCriteriaId": "EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*",
"matchCriteriaId": "02C55E2E-AEDE-455C-B128-168C918B5D97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*",
"matchCriteriaId": "81831D37-6597-441B-87DE-38F7191BEA42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*",
"matchCriteriaId": "EEA1594D-0AB5-436D-9E60-C26EE2175753",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*",
"matchCriteriaId": "B868FA41-C71B-491C-880B-484740B30C72",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*",
"matchCriteriaId": "C242D3BE-9114-4A9E-BB78-45754C7CC450",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*",
"matchCriteriaId": "95954182-9541-4181-9647-B17FA5A79F9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*",
"matchCriteriaId": "70892D06-6E75-4425-BBF0-4B684EC62A1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*",
"matchCriteriaId": "7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*",
"matchCriteriaId": "7417B2BB-9AC2-4AF4-A828-C89A0735AD92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*",
"matchCriteriaId": "6A0A57B5-6F88-4288-9CDE-F6613FE068D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*",
"matchCriteriaId": "67ED8559-C348-4932-B7CE-CB96976A30EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*",
"matchCriteriaId": "40AC3D91-263F-4345-9FAA-0E573EA64590",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*",
"matchCriteriaId": "DD92AFA9-81F8-48D4-B79A-E7F066F69A99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*",
"matchCriteriaId": "2C4B2F24-A730-4818-90C8-A2D90C081F03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*",
"matchCriteriaId": "464087F2-C285-4574-957E-CE0663F07DE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*",
"matchCriteriaId": "3E9BB880-A4F6-4887-8BB9-47AA298753D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*",
"matchCriteriaId": "18DCFF53-B298-4534-AB5C-8A5EF59C616F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*",
"matchCriteriaId": "083419F8-FDDF-4E36-88F8-857DB317C1D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*",
"matchCriteriaId": "D7A74F65-57E8-4C9A-BA96-5EF401504F13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*",
"matchCriteriaId": "0D0B90FC-57B6-4315-9B29-3C36E58B2CF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*",
"matchCriteriaId": "07812576-3C35-404C-A7D7-9BE9E3D76E00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*",
"matchCriteriaId": "00C52B1C-5447-4282-9667-9EBE0720B423",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*",
"matchCriteriaId": "92BB9EB0-0C12-4E77-89EE-FB77097841B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*",
"matchCriteriaId": "FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*",
"matchCriteriaId": "ABC0E7BB-F8B7-4369-9910-71240E4073A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*",
"matchCriteriaId": "551B2640-8CEC-4C24-AF8B-7A7CEF864D9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*",
"matchCriteriaId": "0AE30779-48FB-451E-8CE1-F469F93B8772",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*",
"matchCriteriaId": "60590FDE-7156-4314-A012-AA38BD2ADDC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*",
"matchCriteriaId": "BE51AD3A-8331-4E8F-9DB1-7A0051731DFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*",
"matchCriteriaId": "F24F6122-2256-41B6-9033-794C6424ED99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*",
"matchCriteriaId": "0EAFA79E-8C7A-48CF-8868-11378FE4B26F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*",
"matchCriteriaId": "D1D6F19F-59B5-4BB6-AD35-013384025970",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*",
"matchCriteriaId": "E7BA97BC-3ADA-465A-835B-6C3C5F416B56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*",
"matchCriteriaId": "B71F77A4-B7EB-47A1-AAFD-431A7D040B86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*",
"matchCriteriaId": "91D6BEA9-5943-44A4-946D-CEAA9BA99376",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*",
"matchCriteriaId": "C079A3E0-44EB-4B9C-B4FC-B7621D165C3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*",
"matchCriteriaId": "2CB74086-14B8-4237-8357-E0C6B5BB8313",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*",
"matchCriteriaId": "3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*",
"matchCriteriaId": "00C2B9C9-1177-4DA6-96CE-55F37F383F99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*",
"matchCriteriaId": "435CF189-0BD8-40DF-A0DC-99862CDEAF8A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*",
"matchCriteriaId": "12A3F367-33AD-47C3-BFDC-871A17E72C94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*",
"matchCriteriaId": "A18F994F-72CA-4AF5-A7D1-9F5AEA286D85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*",
"matchCriteriaId": "78261932-7373-4F16-91E0-1A72ADBEBC3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*",
"matchCriteriaId": "9BD90D3D-9B3A-4101-9A8A-5090F0A9719F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*",
"matchCriteriaId": "B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*",
"matchCriteriaId": "F5A40B8A-D428-4008-9F21-AF21394C51D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*",
"matchCriteriaId": "FEC5B777-01E1-45EE-AF95-C3BD1F098B2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*",
"matchCriteriaId": "3B504718-5DCE-43B4-B19A-C6B6E7444BD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*",
"matchCriteriaId": "3102AA10-99A8-49A9-867E-7EEC56865680",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*",
"matchCriteriaId": "5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*",
"matchCriteriaId": "15BA8A26-2CDA-442B-A549-6BE92DCCD205",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:8:update292:*:*:*:*:*:*",
"matchCriteriaId": "71F08D72-37B5-49C2-B8C9-ECF0C9C435D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*",
"matchCriteriaId": "465CFA59-8E94-415A-ACF0-E678826813BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "85BDC28A-484B-4D14-8D68-890450DCE3F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "635DEFDD-4840-48C6-AB1C-ADAFF4A1E50C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "40A221DB-1684-4C87-B576-0969FE13E1AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DE6A1B86-3688-4A13-AB37-DBD0DA323202",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "17E0085B-4748-4F79-BEF6-CD9C3D2E6FE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3C4DAA76-EAA9-4C85-A92A-181EA49F3270",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "19FC2907-1712-4E81-AC35-E3A15BF27606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "140F8ECC-F5DB-474E-ADA4-99EC9FBA45EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "C7A1C3EA-BBF2-4A3F-BACE-D4A5CF9E9B88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A001F5EC-B534-424E-A8E7-FD4B1DD94BB1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:11.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "6DF5E492-5C34-4ABB-9934-8C4CF29EE097",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13:*:*:*:*:*:*:*",
"matchCriteriaId": "FD3A4AFB-8D76-4B16-A306-2A10F23E51EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1704C904-6E0A-4972-BC94-326D8BC6315A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "35FA24D1-8BDA-4DD4-A74C-C041C44A1455",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "790FD30A-CE27-4A1E-A753-BE0A6B17B262",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "254B5086-305E-4A19-8845-02BF7B8AA3F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "D418243D-BE1E-4E43-915A-57208E9C38CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "DAA80ACA-8243-4E7E-98D7-594DDA75FBF6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:13.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "12E2041A-65AB-4BFD-BDB7-2CA4711FDE2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:15:*:*:*:*:*:*:*",
"matchCriteriaId": "65118341-0005-405D-B688-A3D98FD97A76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:15.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D8BB14B2-CA52-4439-A156-56C4CFF2F73A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:15.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "0ADD6CAB-B69C-418A-817A-4AC02FA02FD4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:15.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "EE9026AD-DD0C-47F3-BE28-6C8A88D199C0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:16:*:*:*:*:*:*:*",
"matchCriteriaId": "DCFB65CD-98D5-4024-86CF-130D70DC5A5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:openjdk:16.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "24023B81-2034-4CDB-9116-D8D006FD600B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:graalvm:20.3.2:*:*:*:enterprise:*:*:*",
"matchCriteriaId": "C21EB1C3-3251-4B99-9D5F-E4E089E2EC62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:graalvm:21.1.0:*:*:*:enterprise:*:*:*",
"matchCriteriaId": "CA0CBB5F-6CA5-4DFC-97A3-05643F8885DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update301:*:*:*:*:*:*",
"matchCriteriaId": "6B0DA102-863A-43BC-8F61-5ED10DAFDC2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update291:*:*:*:*:*:*",
"matchCriteriaId": "791E436C-516A-423D-98A1-0F446C5027AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:11.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "4C0C71DD-48B0-4BB6-8A6E-A43E3161B825",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jdk:16.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "10601225-3E13-45DC-A9E3-029AD286000C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update301:*:*:*:*:*:*",
"matchCriteriaId": "0C88DC87-94BB-4DFD-A662-740E93AF95FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:1.8.0:update291:*:*:*:*:*:*",
"matchCriteriaId": "34D8ED6C-86C3-4EFB-B94A-C7E4BE4D003F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:11.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "7029CB86-1358-478A-9062-0ECB77B8AAAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:jre:16.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "506059B3-3E98-4999-83A9-8AC6B0009820",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)."
},
{
"lang": "es",
"value": "Una vulnerabilidad en el producto Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Networking). Las versiones compatibles que est\u00e1n afectadas son Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 y 21.1.0. Una vulnerabilidad dif\u00edcil de explotar permite a un atacante no autenticado con acceso a la red por medio de m\u00faltiples protocolos comprometer a Java SE, Oracle GraalVM Enterprise Edition. Los ataques con \u00e9xito requieren una interacci\u00f3n humana de una persona diferente del atacante. Los ataques con \u00e9xito de esta vulnerabilidad pueden resultar en un acceso de lectura no autorizado a un subconjunto de datos accesibles de Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad se aplica a las implementaciones de Java, generalmente en clientes que ejecutan aplicaciones Java Web Start dentro del sandbox o applets de Java dentro del sandbox, que cargan y ejecutan c\u00f3digo no confiable (por ejemplo, c\u00f3digo que proviene de Internet) y conf\u00edan en el sandbox de Java para la seguridad. Esta vulnerabilidad no se aplica a las implementaciones de Java, com\u00fanmente en servidores, que cargan y ejecutan solo c\u00f3digo confiable (por ejemplo, c\u00f3digo instalado por un administrador). CVSS 3.1 Puntuaci\u00f3n Base 3.1 (Impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)"
}
],
"id": "CVE-2021-2341",
"lastModified": "2025-05-27T16:47:32.957",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 1.4,
"source": "secalert_us@oracle.com",
"type": "Secondary"
}
]
},
"published": "2021-07-21T15:15:17.927",
"references": [
{
"source": "secalert_us@oracle.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202209-05"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"source": "secalert_us@oracle.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202209-05"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
}
],
"sourceIdentifier": "secalert_us@oracle.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-W2PH-9HG3-84VP
Vulnerability from github – Published: 2022-05-24 19:08 – Updated: 2025-05-27 18:30
VLAI
Details
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).
Severity
{
"affected": [],
"aliases": [
"CVE-2021-2341"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-07-21T15:15:00Z",
"severity": "LOW"
},
"details": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"id": "GHSA-w2ph-9hg3-84vp",
"modified": "2025-05-27T18:30:36Z",
"published": "2022-05-24T19:08:45Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-2341"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202209-05"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20210723-0002"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GSD-2021-2341
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-2341",
"description": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"id": "GSD-2021-2341",
"references": [
"https://www.suse.com/security/cve/CVE-2021-2341.html",
"https://www.debian.org/security/2021/dsa-4946",
"https://access.redhat.com/errata/RHSA-2021:4089",
"https://access.redhat.com/errata/RHSA-2021:3293",
"https://access.redhat.com/errata/RHSA-2021:3292",
"https://access.redhat.com/errata/RHSA-2021:2845",
"https://access.redhat.com/errata/RHSA-2021:2784",
"https://access.redhat.com/errata/RHSA-2021:2783",
"https://access.redhat.com/errata/RHSA-2021:2782",
"https://access.redhat.com/errata/RHSA-2021:2781",
"https://access.redhat.com/errata/RHSA-2021:2780",
"https://access.redhat.com/errata/RHSA-2021:2779",
"https://access.redhat.com/errata/RHSA-2021:2778",
"https://access.redhat.com/errata/RHSA-2021:2777",
"https://access.redhat.com/errata/RHSA-2021:2776",
"https://access.redhat.com/errata/RHSA-2021:2775",
"https://access.redhat.com/errata/RHSA-2021:2774",
"https://ubuntu.com/security/CVE-2021-2341",
"https://security.archlinux.org/CVE-2021-2341",
"https://alas.aws.amazon.com/cve/html/CVE-2021-2341.html",
"https://linux.oracle.com/cve/CVE-2021-2341.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-2341"
],
"details": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"id": "GSD-2021-2341",
"modified": "2023-12-13T01:23:14.948399Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2021-2341",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Java SE JDK and JRE",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Java SE:7u301"
},
{
"version_affected": "=",
"version_value": "Java SE:8u291"
},
{
"version_affected": "=",
"version_value": "Java SE:11.0.11"
},
{
"version_affected": "=",
"version_value": "Java SE:16.0.1"
},
{
"version_affected": "=",
"version_value": "Oracle GraalVM Enterprise Edition:20.3.2"
},
{
"version_affected": "=",
"version_value": "Oracle GraalVM Enterprise Edition:21.1.0"
}
]
}
}
]
},
"vendor_name": "Oracle Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)."
}
]
},
"impact": {
"cvss": {
"baseScore": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.oracle.com/security-alerts/cpujul2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"name": "DSA-4946",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"name": "FEDORA-2021-d20d6712bc",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"name": "FEDORA-2021-ade03666c0",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"name": "FEDORA-2021-e6b0792d75",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"name": "FEDORA-2021-4581ccb97d",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"name": "[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20210723-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"name": "GLSA-202209-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202209-05"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:openjdk:11.0.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:graalvm:20.3.2:*:*:*:enterprise:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:graalvm:21.1.0:*:*:*:enterprise:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:openjdk:16.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert_us@oracle.com",
"ID": "CVE-2021-2341"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.oracle.com/security-alerts/cpujul2021.html",
"refsource": "MISC",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2021.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20210723-0002/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20210723-0002/"
},
{
"name": "DSA-4946",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4946"
},
{
"name": "FEDORA-2021-e6b0792d75",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N57OFX5EJKHHDW4WAOBZFWA5CL4VIIK5/"
},
{
"name": "FEDORA-2021-4581ccb97d",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VTRQIXB52KIXUAO6JBYUKYWXST2NKNAK/"
},
{
"name": "FEDORA-2021-ade03666c0",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJJ75FHSUZGWPV4UJTSMQHWLOQ77LHTG/"
},
{
"name": "FEDORA-2021-d20d6712bc",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A4TTUHVQF2MGUTP6GTCXLZS4GXK3XUWC/"
},
{
"name": "[debian-lts-announce] 20210809 [SECURITY] [DLA 2737-1] openjdk-8 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00011.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "GLSA-202209-05",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202209-05"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 1.4
}
},
"lastModifiedDate": "2022-09-23T14:00Z",
"publishedDate": "2021-07-21T15:15Z"
}
}
}
OPENSUSE-SU-2021:1176-1
Vulnerability from csaf_opensuse - Published: 2021-08-21 08:26 - Updated: 2021-08-21 08:26Summary
Security update for java-1_8_0-openjdk
Severity
Important
Notes
Title of the patch: Security update for java-1_8_0-openjdk
Description of the patch: This update for java-1_8_0-openjdk fixes the following issues:
- Update to version jdk8u302 (icedtea 3.20.0)
- CVE-2021-2341: Improve file transfers. (bsc#1188564)
- CVE-2021-2369: Better jar file validation. (bsc#1188565)
- CVE-2021-2388: Enhance compiler validation. (bsc#1188566)
- CVE-2021-2161: Less ambiguous processing. (bsc#1185056)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2021-1176
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185056 | self |
| https://bugzilla.suse.com/1188564 | self |
| https://bugzilla.suse.com/1188565 | self |
| https://bugzilla.suse.com/1188566 | self |
| https://www.suse.com/security/cve/CVE-2021-2161/ | self |
| https://www.suse.com/security/cve/CVE-2021-2341/ | self |
| https://www.suse.com/security/cve/CVE-2021-2369/ | self |
| https://www.suse.com/security/cve/CVE-2021-2388/ | self |
| https://www.suse.com/security/cve/CVE-2021-2161 | external |
| https://bugzilla.suse.com/1185056 | external |
| https://www.suse.com/security/cve/CVE-2021-2341 | external |
| https://bugzilla.suse.com/1188564 | external |
| https://www.suse.com/security/cve/CVE-2021-2369 | external |
| https://bugzilla.suse.com/1188565 | external |
| https://www.suse.com/security/cve/CVE-2021-2388 | external |
| https://bugzilla.suse.com/1188566 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-openjdk",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-1_8_0-openjdk fixes the following issues:\n\n- Update to version jdk8u302 (icedtea 3.20.0)\n- CVE-2021-2341: Improve file transfers. (bsc#1188564)\n- CVE-2021-2369: Better jar file validation. (bsc#1188565)\n- CVE-2021-2388: Enhance compiler validation. (bsc#1188566)\n- CVE-2021-2161: Less ambiguous processing. (bsc#1185056)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1176",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1176-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1176-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/A3CHP6PJ4RPID7WVQKA2X34TN5RNEXQW/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1176-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/A3CHP6PJ4RPID7WVQKA2X34TN5RNEXQW/"
},
{
"category": "self",
"summary": "SUSE Bug 1185056",
"url": "https://bugzilla.suse.com/1185056"
},
{
"category": "self",
"summary": "SUSE Bug 1188564",
"url": "https://bugzilla.suse.com/1188564"
},
{
"category": "self",
"summary": "SUSE Bug 1188565",
"url": "https://bugzilla.suse.com/1188565"
},
{
"category": "self",
"summary": "SUSE Bug 1188566",
"url": "https://bugzilla.suse.com/1188566"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2161 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2341 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2369 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2388 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2388/"
}
],
"title": "Security update for java-1_8_0-openjdk",
"tracking": {
"current_release_date": "2021-08-21T08:26:44Z",
"generator": {
"date": "2021-08-21T08:26:44Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1176-1",
"initial_release_date": "2021-08-21T08:26:44Z",
"revision_history": [
{
"date": "2021-08-21T08:26:44Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"product": {
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"product_id": "java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch"
},
"product_reference": "java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-2161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2161"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. It can also be exploited by supplying untrusted data to APIs in the specified Component. CVSS 3.1 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2161",
"url": "https://www.suse.com/security/cve/CVE-2021-2161"
},
{
"category": "external",
"summary": "SUSE Bug 1185056 for CVE-2021-2161",
"url": "https://bugzilla.suse.com/1185056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-21T08:26:44Z",
"details": "moderate"
}
],
"title": "CVE-2021-2161"
},
{
"cve": "CVE-2021-2341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2341"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2341",
"url": "https://www.suse.com/security/cve/CVE-2021-2341"
},
{
"category": "external",
"summary": "SUSE Bug 1188564 for CVE-2021-2341",
"url": "https://bugzilla.suse.com/1188564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-21T08:26:44Z",
"details": "moderate"
}
],
"title": "CVE-2021-2341"
},
{
"cve": "CVE-2021-2369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2369"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2369",
"url": "https://www.suse.com/security/cve/CVE-2021-2369"
},
{
"category": "external",
"summary": "SUSE Bug 1188565 for CVE-2021-2369",
"url": "https://bugzilla.suse.com/1188565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-21T08:26:44Z",
"details": "moderate"
}
],
"title": "CVE-2021-2369"
},
{
"cve": "CVE-2021-2388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2388"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2388",
"url": "https://www.suse.com/security/cve/CVE-2021-2388"
},
{
"category": "external",
"summary": "SUSE Bug 1188566 for CVE-2021-2388",
"url": "https://bugzilla.suse.com/1188566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-accessibility-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-demo-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-devel-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-headless-1.8.0.302-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openjdk-javadoc-1.8.0.302-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-1_8_0-openjdk-src-1.8.0.302-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-21T08:26:44Z",
"details": "important"
}
],
"title": "CVE-2021-2388"
}
]
}
OPENSUSE-SU-2021:1233-1
Vulnerability from csaf_opensuse - Published: 2021-09-07 09:30 - Updated: 2021-09-07 09:30Summary
Security update for java-11-openjdk
Severity
Important
Notes
Title of the patch: Security update for java-11-openjdk
Description of the patch: This update for java-11-openjdk fixes the following issues:
- Update to jdk-11.0.12+7
- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565)
- CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566)
- CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2021-1233
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
15 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185476 | self |
| https://bugzilla.suse.com/1188564 | self |
| https://bugzilla.suse.com/1188565 | self |
| https://bugzilla.suse.com/1188566 | self |
| https://www.suse.com/security/cve/CVE-2021-2341/ | self |
| https://www.suse.com/security/cve/CVE-2021-2369/ | self |
| https://www.suse.com/security/cve/CVE-2021-2388/ | self |
| https://www.suse.com/security/cve/CVE-2021-2341 | external |
| https://bugzilla.suse.com/1188564 | external |
| https://www.suse.com/security/cve/CVE-2021-2369 | external |
| https://bugzilla.suse.com/1188565 | external |
| https://www.suse.com/security/cve/CVE-2021-2388 | external |
| https://bugzilla.suse.com/1188566 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-11-openjdk",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-11-openjdk fixes the following issues:\n\n- Update to jdk-11.0.12+7\n- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565)\n- CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566)\n- CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1233",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1233-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1233-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3QRLIMZTBL2C75CNGC2PCETJT2CPLMGD/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1233-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3QRLIMZTBL2C75CNGC2PCETJT2CPLMGD/"
},
{
"category": "self",
"summary": "SUSE Bug 1185476",
"url": "https://bugzilla.suse.com/1185476"
},
{
"category": "self",
"summary": "SUSE Bug 1188564",
"url": "https://bugzilla.suse.com/1188564"
},
{
"category": "self",
"summary": "SUSE Bug 1188565",
"url": "https://bugzilla.suse.com/1188565"
},
{
"category": "self",
"summary": "SUSE Bug 1188566",
"url": "https://bugzilla.suse.com/1188566"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2341 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2369 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2388 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2388/"
}
],
"title": "Security update for java-11-openjdk",
"tracking": {
"current_release_date": "2021-09-07T09:30:57Z",
"generator": {
"date": "2021-09-07T09:30:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1233-1",
"initial_release_date": "2021-09-07T09:30:57Z",
"revision_history": [
{
"date": "2021-09-07T09:30:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"product_id": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"product": {
"name": "java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"product_id": "java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64",
"product_id": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch"
},
"product_reference": "java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-2341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2341"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2341",
"url": "https://www.suse.com/security/cve/CVE-2021-2341"
},
{
"category": "external",
"summary": "SUSE Bug 1188564 for CVE-2021-2341",
"url": "https://bugzilla.suse.com/1188564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-07T09:30:57Z",
"details": "moderate"
}
],
"title": "CVE-2021-2341"
},
{
"cve": "CVE-2021-2369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2369"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2369",
"url": "https://www.suse.com/security/cve/CVE-2021-2369"
},
{
"category": "external",
"summary": "SUSE Bug 1188565 for CVE-2021-2369",
"url": "https://bugzilla.suse.com/1188565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-07T09:30:57Z",
"details": "moderate"
}
],
"title": "CVE-2021-2369"
},
{
"cve": "CVE-2021-2388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2388"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2388",
"url": "https://www.suse.com/security/cve/CVE-2021-2388"
},
{
"category": "external",
"summary": "SUSE Bug 1188566 for CVE-2021-2388",
"url": "https://bugzilla.suse.com/1188566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-accessibility-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-demo-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-devel-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-headless-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-javadoc-11.0.12.0-lp152.2.15.1.noarch",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-jmods-11.0.12.0-lp152.2.15.1.x86_64",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.i586",
"openSUSE Leap 15.2:java-11-openjdk-src-11.0.12.0-lp152.2.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-07T09:30:57Z",
"details": "important"
}
],
"title": "CVE-2021-2388"
}
]
}
OPENSUSE-SU-2021:1455-1
Vulnerability from csaf_opensuse - Published: 2021-11-05 23:42 - Updated: 2021-11-05 23:42Summary
Security update for java-1_8_0-openj9
Severity
Important
Notes
Title of the patch: Security update for java-1_8_0-openj9
Description of the patch: This update for java-1_8_0-openj9 fixes the following issues:
Update to OpenJDK 8u312 build 07 with OpenJ9 0.29.0 virtual machine including
Oracle July 2021 and October 2021 CPU changes
- CVE-2021-2161: Fixed incorrect handling of partially quoted arguments in ProcessBuilder on Windows (bsc#1185056).
- CVE-2021-2163: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055).
- CVE-2021-2341: Fixed flaw inside the FtpClient (bsc#1188564).
- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files (bsc#1188565).
- CVE-2021-2388: Fixed flaw inside the Hotspot component performed range check elimination (bsc#1188566).
- CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901).
- CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910).
- CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911).
- CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912).
- CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913).
- CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909).
- CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903).
- CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904).
- CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914).
- CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames: openSUSE-2021-1455
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.8 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
References
66 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185055 | self |
| https://bugzilla.suse.com/1185056 | self |
| https://bugzilla.suse.com/1188564 | self |
| https://bugzilla.suse.com/1188565 | self |
| https://bugzilla.suse.com/1188566 | self |
| https://bugzilla.suse.com/1191901 | self |
| https://bugzilla.suse.com/1191903 | self |
| https://bugzilla.suse.com/1191904 | self |
| https://bugzilla.suse.com/1191906 | self |
| https://bugzilla.suse.com/1191909 | self |
| https://bugzilla.suse.com/1191910 | self |
| https://bugzilla.suse.com/1191911 | self |
| https://bugzilla.suse.com/1191912 | self |
| https://bugzilla.suse.com/1191913 | self |
| https://bugzilla.suse.com/1191914 | self |
| https://www.suse.com/security/cve/CVE-2021-2161/ | self |
| https://www.suse.com/security/cve/CVE-2021-2163/ | self |
| https://www.suse.com/security/cve/CVE-2021-2341/ | self |
| https://www.suse.com/security/cve/CVE-2021-2369/ | self |
| https://www.suse.com/security/cve/CVE-2021-2388/ | self |
| https://www.suse.com/security/cve/CVE-2021-35550/ | self |
| https://www.suse.com/security/cve/CVE-2021-35556/ | self |
| https://www.suse.com/security/cve/CVE-2021-35559/ | self |
| https://www.suse.com/security/cve/CVE-2021-35561/ | self |
| https://www.suse.com/security/cve/CVE-2021-35564/ | self |
| https://www.suse.com/security/cve/CVE-2021-35565/ | self |
| https://www.suse.com/security/cve/CVE-2021-35567/ | self |
| https://www.suse.com/security/cve/CVE-2021-35578/ | self |
| https://www.suse.com/security/cve/CVE-2021-35586/ | self |
| https://www.suse.com/security/cve/CVE-2021-35603/ | self |
| https://www.suse.com/security/cve/CVE-2021-2161 | external |
| https://bugzilla.suse.com/1185056 | external |
| https://www.suse.com/security/cve/CVE-2021-2163 | external |
| https://bugzilla.suse.com/1185055 | external |
| https://www.suse.com/security/cve/CVE-2021-2341 | external |
| https://bugzilla.suse.com/1188564 | external |
| https://www.suse.com/security/cve/CVE-2021-2369 | external |
| https://bugzilla.suse.com/1188565 | external |
| https://www.suse.com/security/cve/CVE-2021-2388 | external |
| https://bugzilla.suse.com/1188566 | external |
| https://www.suse.com/security/cve/CVE-2021-35550 | external |
| https://bugzilla.suse.com/1191901 | external |
| https://bugzilla.suse.com/1193314 | external |
| https://www.suse.com/security/cve/CVE-2021-35556 | external |
| https://bugzilla.suse.com/1191910 | external |
| https://www.suse.com/security/cve/CVE-2021-35559 | external |
| https://bugzilla.suse.com/1191911 | external |
| https://www.suse.com/security/cve/CVE-2021-35561 | external |
| https://bugzilla.suse.com/1191912 | external |
| https://www.suse.com/security/cve/CVE-2021-35564 | external |
| https://bugzilla.suse.com/1191913 | external |
| https://www.suse.com/security/cve/CVE-2021-35565 | external |
| https://bugzilla.suse.com/1191909 | external |
| https://www.suse.com/security/cve/CVE-2021-35567 | external |
| https://bugzilla.suse.com/1191903 | external |
| https://www.suse.com/security/cve/CVE-2021-35578 | external |
| https://bugzilla.suse.com/1191904 | external |
| https://www.suse.com/security/cve/CVE-2021-35586 | external |
| https://bugzilla.suse.com/1191914 | external |
| https://bugzilla.suse.com/1194928 | external |
| https://www.suse.com/security/cve/CVE-2021-35603 | external |
| https://bugzilla.suse.com/1191906 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-openj9",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-1_8_0-openj9 fixes the following issues:\n\nUpdate to OpenJDK 8u312 build 07 with OpenJ9 0.29.0 virtual machine including\nOracle July 2021 and October 2021 CPU changes\n\n- CVE-2021-2161: Fixed incorrect handling of partially quoted arguments in ProcessBuilder on Windows (bsc#1185056).\n- CVE-2021-2163: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055).\n- CVE-2021-2341: Fixed flaw inside the FtpClient (bsc#1188564).\n- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files (bsc#1188565).\n- CVE-2021-2388: Fixed flaw inside the Hotspot component performed range check elimination (bsc#1188566).\n- CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901).\n- CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910).\n- CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911).\n- CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912).\n- CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913).\n- CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909).\n- CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903).\n- CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904).\n- CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914).\n- CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1455",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1455-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1455-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GRBHNCR5KDMAYD3N3CDRPQWW3T6HIBNY/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1455-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GRBHNCR5KDMAYD3N3CDRPQWW3T6HIBNY/"
},
{
"category": "self",
"summary": "SUSE Bug 1185055",
"url": "https://bugzilla.suse.com/1185055"
},
{
"category": "self",
"summary": "SUSE Bug 1185056",
"url": "https://bugzilla.suse.com/1185056"
},
{
"category": "self",
"summary": "SUSE Bug 1188564",
"url": "https://bugzilla.suse.com/1188564"
},
{
"category": "self",
"summary": "SUSE Bug 1188565",
"url": "https://bugzilla.suse.com/1188565"
},
{
"category": "self",
"summary": "SUSE Bug 1188566",
"url": "https://bugzilla.suse.com/1188566"
},
{
"category": "self",
"summary": "SUSE Bug 1191901",
"url": "https://bugzilla.suse.com/1191901"
},
{
"category": "self",
"summary": "SUSE Bug 1191903",
"url": "https://bugzilla.suse.com/1191903"
},
{
"category": "self",
"summary": "SUSE Bug 1191904",
"url": "https://bugzilla.suse.com/1191904"
},
{
"category": "self",
"summary": "SUSE Bug 1191906",
"url": "https://bugzilla.suse.com/1191906"
},
{
"category": "self",
"summary": "SUSE Bug 1191909",
"url": "https://bugzilla.suse.com/1191909"
},
{
"category": "self",
"summary": "SUSE Bug 1191910",
"url": "https://bugzilla.suse.com/1191910"
},
{
"category": "self",
"summary": "SUSE Bug 1191911",
"url": "https://bugzilla.suse.com/1191911"
},
{
"category": "self",
"summary": "SUSE Bug 1191912",
"url": "https://bugzilla.suse.com/1191912"
},
{
"category": "self",
"summary": "SUSE Bug 1191913",
"url": "https://bugzilla.suse.com/1191913"
},
{
"category": "self",
"summary": "SUSE Bug 1191914",
"url": "https://bugzilla.suse.com/1191914"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2161 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2163 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2341 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2369 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2388 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2388/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35550 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35556 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35556/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35559 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35559/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35561 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35561/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35564 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35564/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35565 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35567 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35578 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35586 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35586/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35603 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35603/"
}
],
"title": "Security update for java-1_8_0-openj9",
"tracking": {
"current_release_date": "2021-11-05T23:42:40Z",
"generator": {
"date": "2021-11-05T23:42:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1455-1",
"initial_release_date": "2021-11-05T23:42:40Z",
"revision_history": [
{
"date": "2021-11-05T23:42:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"product": {
"name": "java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"product_id": "java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64",
"product": {
"name": "java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64",
"product_id": "java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch"
},
"product_reference": "java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
},
"product_reference": "java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-2161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2161"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. It can also be exploited by supplying untrusted data to APIs in the specified Component. CVSS 3.1 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2161",
"url": "https://www.suse.com/security/cve/CVE-2021-2161"
},
{
"category": "external",
"summary": "SUSE Bug 1185056 for CVE-2021-2161",
"url": "https://bugzilla.suse.com/1185056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-2161"
},
{
"cve": "CVE-2021-2163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2163"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2163",
"url": "https://www.suse.com/security/cve/CVE-2021-2163"
},
{
"category": "external",
"summary": "SUSE Bug 1185055 for CVE-2021-2163",
"url": "https://bugzilla.suse.com/1185055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-2163"
},
{
"cve": "CVE-2021-2341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2341"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2341",
"url": "https://www.suse.com/security/cve/CVE-2021-2341"
},
{
"category": "external",
"summary": "SUSE Bug 1188564 for CVE-2021-2341",
"url": "https://bugzilla.suse.com/1188564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-2341"
},
{
"cve": "CVE-2021-2369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2369"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2369",
"url": "https://www.suse.com/security/cve/CVE-2021-2369"
},
{
"category": "external",
"summary": "SUSE Bug 1188565 for CVE-2021-2369",
"url": "https://bugzilla.suse.com/1188565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-2369"
},
{
"cve": "CVE-2021-2388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2388"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2388",
"url": "https://www.suse.com/security/cve/CVE-2021-2388"
},
{
"category": "external",
"summary": "SUSE Bug 1188566 for CVE-2021-2388",
"url": "https://bugzilla.suse.com/1188566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "important"
}
],
"title": "CVE-2021-2388"
},
{
"cve": "CVE-2021-35550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35550"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35550",
"url": "https://www.suse.com/security/cve/CVE-2021-35550"
},
{
"category": "external",
"summary": "SUSE Bug 1191901 for CVE-2021-35550",
"url": "https://bugzilla.suse.com/1191901"
},
{
"category": "external",
"summary": "SUSE Bug 1193314 for CVE-2021-35550",
"url": "https://bugzilla.suse.com/1193314"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35550"
},
{
"cve": "CVE-2021-35556",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35556"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35556",
"url": "https://www.suse.com/security/cve/CVE-2021-35556"
},
{
"category": "external",
"summary": "SUSE Bug 1191910 for CVE-2021-35556",
"url": "https://bugzilla.suse.com/1191910"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35556"
},
{
"cve": "CVE-2021-35559",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35559"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35559",
"url": "https://www.suse.com/security/cve/CVE-2021-35559"
},
{
"category": "external",
"summary": "SUSE Bug 1191911 for CVE-2021-35559",
"url": "https://bugzilla.suse.com/1191911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35559"
},
{
"cve": "CVE-2021-35561",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35561"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Utility). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35561",
"url": "https://www.suse.com/security/cve/CVE-2021-35561"
},
{
"category": "external",
"summary": "SUSE Bug 1191912 for CVE-2021-35561",
"url": "https://bugzilla.suse.com/1191912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35561"
},
{
"cve": "CVE-2021-35564",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35564"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Keytool). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35564",
"url": "https://www.suse.com/security/cve/CVE-2021-35564"
},
{
"category": "external",
"summary": "SUSE Bug 1191913 for CVE-2021-35564",
"url": "https://bugzilla.suse.com/1191913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35564"
},
{
"cve": "CVE-2021-35565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35565"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35565",
"url": "https://www.suse.com/security/cve/CVE-2021-35565"
},
{
"category": "external",
"summary": "SUSE Bug 1191909 for CVE-2021-35565",
"url": "https://bugzilla.suse.com/1191909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35565"
},
{
"cve": "CVE-2021-35567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35567"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via Kerberos to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Oracle GraalVM Enterprise Edition, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 6.8 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35567",
"url": "https://www.suse.com/security/cve/CVE-2021-35567"
},
{
"category": "external",
"summary": "SUSE Bug 1191903 for CVE-2021-35567",
"url": "https://bugzilla.suse.com/1191903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35567"
},
{
"cve": "CVE-2021-35578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35578"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35578",
"url": "https://www.suse.com/security/cve/CVE-2021-35578"
},
{
"category": "external",
"summary": "SUSE Bug 1191904 for CVE-2021-35578",
"url": "https://bugzilla.suse.com/1191904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35578"
},
{
"cve": "CVE-2021-35586",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35586"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35586",
"url": "https://www.suse.com/security/cve/CVE-2021-35586"
},
{
"category": "external",
"summary": "SUSE Bug 1191914 for CVE-2021-35586",
"url": "https://bugzilla.suse.com/1191914"
},
{
"category": "external",
"summary": "SUSE Bug 1194928 for CVE-2021-35586",
"url": "https://bugzilla.suse.com/1194928"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "moderate"
}
],
"title": "CVE-2021-35586"
},
{
"cve": "CVE-2021-35603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35603"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35603",
"url": "https://www.suse.com/security/cve/CVE-2021-35603"
},
{
"category": "external",
"summary": "SUSE Bug 1191906 for CVE-2021-35603",
"url": "https://bugzilla.suse.com/1191906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:java-1_8_0-openj9-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-accessibility-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-demo-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-devel-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-headless-1.8.0.312-lp152.3.12.1.x86_64",
"openSUSE Leap 15.2:java-1_8_0-openj9-javadoc-1.8.0.312-lp152.3.12.1.noarch",
"openSUSE Leap 15.2:java-1_8_0-openj9-src-1.8.0.312-lp152.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-05T23:42:40Z",
"details": "low"
}
],
"title": "CVE-2021-35603"
}
]
}
OPENSUSE-SU-2021:2798-1
Vulnerability from csaf_opensuse - Published: 2021-08-20 08:38 - Updated: 2021-08-20 08:38Summary
Security update for java-1_8_0-openjdk
Severity
Important
Notes
Title of the patch: Security update for java-1_8_0-openjdk
Description of the patch: This update for java-1_8_0-openjdk fixes the following issues:
- Update to version jdk8u302 (icedtea 3.20.0)
- CVE-2021-2341: Improve file transfers. (bsc#1188564)
- CVE-2021-2369: Better jar file validation. (bsc#1188565)
- CVE-2021-2388: Enhance compiler validation. (bsc#1188566)
- CVE-2021-2161: Less ambiguous processing. (bsc#1185056)
Patchnames: openSUSE-SLE-15.3-2021-2798
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185056 | self |
| https://bugzilla.suse.com/1188564 | self |
| https://bugzilla.suse.com/1188565 | self |
| https://bugzilla.suse.com/1188566 | self |
| https://www.suse.com/security/cve/CVE-2021-2161/ | self |
| https://www.suse.com/security/cve/CVE-2021-2341/ | self |
| https://www.suse.com/security/cve/CVE-2021-2369/ | self |
| https://www.suse.com/security/cve/CVE-2021-2388/ | self |
| https://www.suse.com/security/cve/CVE-2021-2161 | external |
| https://bugzilla.suse.com/1185056 | external |
| https://www.suse.com/security/cve/CVE-2021-2341 | external |
| https://bugzilla.suse.com/1188564 | external |
| https://www.suse.com/security/cve/CVE-2021-2369 | external |
| https://bugzilla.suse.com/1188565 | external |
| https://www.suse.com/security/cve/CVE-2021-2388 | external |
| https://bugzilla.suse.com/1188566 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-1_8_0-openjdk",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-1_8_0-openjdk fixes the following issues:\n\n- Update to version jdk8u302 (icedtea 3.20.0)\n- CVE-2021-2341: Improve file transfers. (bsc#1188564)\n- CVE-2021-2369: Better jar file validation. (bsc#1188565)\n- CVE-2021-2388: Enhance compiler validation. (bsc#1188566)\n- CVE-2021-2161: Less ambiguous processing. (bsc#1185056)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-2798",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_2798-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:2798-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QMTWQGCU5SAOKIQIUH6IN4LEQOIC2PS6/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:2798-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QMTWQGCU5SAOKIQIUH6IN4LEQOIC2PS6/"
},
{
"category": "self",
"summary": "SUSE Bug 1185056",
"url": "https://bugzilla.suse.com/1185056"
},
{
"category": "self",
"summary": "SUSE Bug 1188564",
"url": "https://bugzilla.suse.com/1188564"
},
{
"category": "self",
"summary": "SUSE Bug 1188565",
"url": "https://bugzilla.suse.com/1188565"
},
{
"category": "self",
"summary": "SUSE Bug 1188566",
"url": "https://bugzilla.suse.com/1188566"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2161 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2341 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2369 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2388 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2388/"
}
],
"title": "Security update for java-1_8_0-openjdk",
"tracking": {
"current_release_date": "2021-08-20T08:38:22Z",
"generator": {
"date": "2021-08-20T08:38:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:2798-1",
"initial_release_date": "2021-08-20T08:38:22Z",
"revision_history": [
{
"date": "2021-08-20T08:38:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"product": {
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"product_id": "java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64"
}
},
{
"category": "product_version",
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64",
"product": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64",
"product_id": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch"
},
"product_reference": "java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
},
"product_reference": "java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-2161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2161"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. It can also be exploited by supplying untrusted data to APIs in the specified Component. CVSS 3.1 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2161",
"url": "https://www.suse.com/security/cve/CVE-2021-2161"
},
{
"category": "external",
"summary": "SUSE Bug 1185056 for CVE-2021-2161",
"url": "https://bugzilla.suse.com/1185056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-20T08:38:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-2161"
},
{
"cve": "CVE-2021-2341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2341"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2341",
"url": "https://www.suse.com/security/cve/CVE-2021-2341"
},
{
"category": "external",
"summary": "SUSE Bug 1188564 for CVE-2021-2341",
"url": "https://bugzilla.suse.com/1188564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-20T08:38:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-2341"
},
{
"cve": "CVE-2021-2369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2369"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2369",
"url": "https://www.suse.com/security/cve/CVE-2021-2369"
},
{
"category": "external",
"summary": "SUSE Bug 1188565 for CVE-2021-2369",
"url": "https://bugzilla.suse.com/1188565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-20T08:38:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-2369"
},
{
"cve": "CVE-2021-2388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2388"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2388",
"url": "https://www.suse.com/security/cve/CVE-2021-2388"
},
{
"category": "external",
"summary": "SUSE Bug 1188566 for CVE-2021-2388",
"url": "https://bugzilla.suse.com/1188566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x",
"openSUSE Leap 15.3:java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-20T08:38:22Z",
"details": "important"
}
],
"title": "CVE-2021-2388"
}
]
}
OPENSUSE-SU-2021:2952-1
Vulnerability from csaf_opensuse - Published: 2021-09-03 12:39 - Updated: 2021-09-03 12:39Summary
Security update for java-11-openjdk
Severity
Important
Notes
Title of the patch: Security update for java-11-openjdk
Description of the patch: This update for java-11-openjdk fixes the following issues:
- Update to jdk-11.0.12+7
- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565)
- CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566)
- CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564)
Patchnames: openSUSE-SLE-15.3-2021-2952
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185476 | self |
| https://bugzilla.suse.com/1188564 | self |
| https://bugzilla.suse.com/1188565 | self |
| https://bugzilla.suse.com/1188566 | self |
| https://www.suse.com/security/cve/CVE-2021-2341/ | self |
| https://www.suse.com/security/cve/CVE-2021-2369/ | self |
| https://www.suse.com/security/cve/CVE-2021-2388/ | self |
| https://www.suse.com/security/cve/CVE-2021-2341 | external |
| https://bugzilla.suse.com/1188564 | external |
| https://www.suse.com/security/cve/CVE-2021-2369 | external |
| https://bugzilla.suse.com/1188565 | external |
| https://www.suse.com/security/cve/CVE-2021-2388 | external |
| https://bugzilla.suse.com/1188566 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-11-openjdk",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-11-openjdk fixes the following issues:\n\n- Update to jdk-11.0.12+7\n- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565)\n- CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566)\n- CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-2952",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_2952-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:2952-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3MYQ74LF5AF2OGVK4O6UUAC44CWPGQGJ/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:2952-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3MYQ74LF5AF2OGVK4O6UUAC44CWPGQGJ/"
},
{
"category": "self",
"summary": "SUSE Bug 1185476",
"url": "https://bugzilla.suse.com/1185476"
},
{
"category": "self",
"summary": "SUSE Bug 1188564",
"url": "https://bugzilla.suse.com/1188564"
},
{
"category": "self",
"summary": "SUSE Bug 1188565",
"url": "https://bugzilla.suse.com/1188565"
},
{
"category": "self",
"summary": "SUSE Bug 1188566",
"url": "https://bugzilla.suse.com/1188566"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2341 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2369 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2369/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-2388 page",
"url": "https://www.suse.com/security/cve/CVE-2021-2388/"
}
],
"title": "Security update for java-11-openjdk",
"tracking": {
"current_release_date": "2021-09-03T12:39:18Z",
"generator": {
"date": "2021-09-03T12:39:18Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:2952-1",
"initial_release_date": "2021-09-03T12:39:18Z",
"revision_history": [
{
"date": "2021-09-03T12:39:18Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"product_id": "java-11-openjdk-src-11.0.12.0-3.59.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"product": {
"name": "java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"product_id": "java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"product_id": "java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-demo-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-devel-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-headless-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"product_id": "java-11-openjdk-src-11.0.12.0-3.59.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.x86_64",
"product": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.x86_64",
"product_id": "java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch"
},
"product_reference": "java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-11-openjdk-src-11.0.12.0-3.59.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
},
"product_reference": "java-11-openjdk-src-11.0.12.0-3.59.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-2341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2341"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2341",
"url": "https://www.suse.com/security/cve/CVE-2021-2341"
},
{
"category": "external",
"summary": "SUSE Bug 1188564 for CVE-2021-2341",
"url": "https://bugzilla.suse.com/1188564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-03T12:39:18Z",
"details": "moderate"
}
],
"title": "CVE-2021-2341"
},
{
"cve": "CVE-2021-2369",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2369"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2369",
"url": "https://www.suse.com/security/cve/CVE-2021-2369"
},
{
"category": "external",
"summary": "SUSE Bug 1188565 for CVE-2021-2369",
"url": "https://bugzilla.suse.com/1188565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-03T12:39:18Z",
"details": "moderate"
}
],
"title": "CVE-2021-2369"
},
{
"cve": "CVE-2021-2388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-2388"
}
],
"notes": [
{
"category": "general",
"text": "Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Oracle GraalVM Enterprise Edition. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-2388",
"url": "https://www.suse.com/security/cve/CVE-2021-2388"
},
{
"category": "external",
"summary": "SUSE Bug 1188566 for CVE-2021-2388",
"url": "https://bugzilla.suse.com/1188566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.aarch64",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.s390x",
"openSUSE Leap 15.3:java-11-openjdk-src-11.0.12.0-3.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-09-03T12:39:18Z",
"details": "important"
}
],
"title": "CVE-2021-2388"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…